Submit #618656: TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflowinfo

TitleTOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow
DescriptionThe T6 routers open MQTT service and listen on port 1883. In function updateWifiInfo. The v9 buffer is 128 bytes, and the sprintf doesn't check for the length of input. Attacker can overwrite the saved return address, lead to RCE.
Source⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/7.md
User
 reisen_1943 (UID 76990)
Submission07/18/2025 21:38 (12 months ago)
Moderation07/19/2025 21:15 (24 hours later)
StatusAccepted
VulDB entry317028 [TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service updateWifiInfo serverIp buffer overflow]
Points17

Want to know what is going to be exploited?

We predict KEV entries!