CVE-2025-60333

Description

TOTOLINK N600R v4.3.0cu.7866_B20220506 was discovered to contain a stack overflow in the wepkey2 parameter in the setWiFiMultipleConfig function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

PUBLISHED Reserved 2025-09-26 | Published 2025-10-22 | Updated 2025-10-23 | Assigner mitre

References

github.com/.../blob/main/PoC/BOF/TOTOLINK/wepkey2/wepkey2.md exploit

github.com/.../blob/main/PoC/BOF/TOTOLINK/wepkey2/wepkey2.md

cve.org (CVE-2025-60333)

nvd.nist.gov (CVE-2025-60333)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.