{"id":66484,"date":"2025-07-18T02:31:46","date_gmt":"2025-07-17T23:01:46","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-7758-totolink-t6-http-post-request-handler-buffer-overflow\/"},"modified":"2025-07-18T02:31:46","modified_gmt":"2025-07-17T23:01:46","slug":"cve-2025-7758-totolink-t6-http-post-request-handler-buffer-overflow","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-7758-totolink-t6-http-post-request-handler-buffer-overflow\/","title":{"rendered":"CVE-2025-7758 &#8211; TOTOLINK T6 HTTP POST Request Handler Buffer Overflow"},"content":{"rendered":"<p><strong>CVE ID : <\/strong>CVE-2025-7758<br \/>\n<br \/>\n<strong>Published : <\/strong> July 17, 2025, 10:15 p.m. | 26\u00a0minutes ago<br \/>\n<br \/>\n<strong>Description : <\/strong>A vulnerability, which was classified as critical, has been found in TOTOLINK T6 up to 4.1.5cu.748_B20211015. Affected by this issue is the function setDiagnosisCfg of the file \/cgi-bin\/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument ip leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.<br \/>\n<br \/>\n<strong>Severity:<\/strong> 8.8 | HIGH<br \/>\n<br \/>\nVisit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-7758 Published : July 17, 2025, 10:15 p.m. | 26\u00a0minutes ago Description : A vulnerability, which was classified as critical, has been found in TOTOLINK T6 up to 4.1.5cu.748_B20211015. Affected by this issue is the function setDiagnosisCfg of the file \/cgi-bin\/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-66484","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/66484","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=66484"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/66484\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=66484"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=66484"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=66484"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}