top of page
perceptive_background_267k.jpg

TOTOLINK A3002RU V3 <= V3.0.0-B20220304.1804 was discovered to contain a stack-based buffer overflow via the hostname parameter in the formMapDelDevice function…

Published:

28 April 2026 at 22:00:00

Alert date:

29 April 2026 at 17:02:35

Source:

nvd.nist.gov

Click to open the original link from this advisory

Network Infrastructure, Mobile & IoT

A stack-based buffer overflow vulnerability has been discovered in TOTOLINK A3002RU V3 routers with firmware versions up to V3.0.0-B20220304.1804. The vulnerability exists in the formMapDelDevice function and can be exploited through the hostname parameter. This type of buffer overflow can potentially allow attackers to execute arbitrary code or cause denial of service. The vulnerability affects network infrastructure devices that are commonly deployed in home and small office environments. Given that it's a buffer overflow in network equipment, it could be exploited remotely to compromise the router.

Technical details

Mitigation steps:

Affected products:

TOTOLINK A3002RU V3

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-36837
https://github.com/0xmania/cve/tree/main/TOTOLINK-A3002RUV3.0-boa-formMapDelDevice-StackOverflow

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page