CVE-2022-44257

Description

TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter pppoeUser in the setOpModeCfg function.

Related CPE's

ototolinklr350_firmware9.3.5u.6369_b20220309*******

htotolinklr350-*******

References

https://brief-nymphea-813.notion.site/LR350-bof-setOpModeCfg-9dc3504e403f445b85d5db09176ac406

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io