CVE-2025-60688 — MEDIUM (6.5)

Vulnerability Description

A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (setDefResponse function). The binary reads the "IpAddress" parameter from a web request and copies it into a fixed-size stack buffer using strcpy() without any length validation. Maliciously crafted input can overflow the buffer, leading to potential arbitrary code execution or memory corruption, without requiring authentication.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Totolink	Lr1200Gb Firmware	9.1.0u.6619_b20230130
Totolink	Lr1200Gb	-
Totolink	Nr1800X Firmware	9.1.0u.6681_b20230703
Totolink	Nr1800X	-

Related Weaknesses (CWE)

CWE-121

References

http://totolink.comBroken Link
https://github.com/yifan20020708/SGTaint-0-day/blob/main/ToToLink/ToToLink-LR120ExploitThird Party Advisory
https://www.totolink.net/Product

FAQ

What is CVE-2025-60688?

CVE-2025-60688 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (setDefResponse functi...

How severe is CVE-2025-60688?

CVE-2025-60688 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-60688?

Check the references section above for vendor advisories and patch information. Affected products include: Totolink Lr1200Gb Firmware, Totolink Lr1200Gb, Totolink Nr1800X Firmware, Totolink Nr1800X.