CVE-2025-60684 | Totolink LR1200GB/NR1800X 9.1.0u Web Interface cstecgi.cgi sprintf lang stack-based overflow

A vulnerability was found in Totolink LR1200GB and NR1800X 9.1.0u. It has been declared as critical. Affected by this issue is the function sprintf of the file cstecgi.cgi of the component Web Interface. Such manipulation of the argument lang leads to stack-based buffer overflow.

This vulnerability is documented as CVE-2025-60684. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More