30Ara
CVE-2023-7187 | Totolink N350RT 9.3.5u.6139_B20201216 HTTP POST Request cstecgi.cgi stack-based overflow
A vulnerability was found in Totolink N350RT 9.3.5u.6139_B20201216. It has been rated as critical. This issue affects some unknown processing of the file /cgi-bin/cstecgi.cgi?action=login&flag=ie8 of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2023-7187. The attack needs to be approached within the local network. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.