| Title | TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow |
|---|
| Description | TOTOLINK Mesh Wifi T6 router has a buffer overflow vulnerability that lead to command injection. This vulnerability can be triggered through the topicurl "setWiFiAclRules". An attacker can implement a RCE attack by sending a malicious HTTP POST request. |
|---|
| Source | ⚠️ https://github.com/ElvisBlue/Public/blob/main/Vuln/1.md |
|---|
| User | ElvisBlue (UID 87432) |
|---|
| Submission | 07/05/2025 17:34 (11 months ago) |
|---|
| Moderation | 07/11/2025 13:14 (6 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 316111 [TOTOLINK T6 4.1.5cu.748_B20211015 HTTP POST Request /cgi-bin/cstecgi.cgi setWiFiAclRules mac buffer overflow] |
|---|
| Points | 17 |
|---|