CVE-2022-41521 TOTOLINK NR1800X V9.1.0u.6279_B20210910 had an authenticated stack overflow.

For more information, please refer to this RedPill vulnerability advisory. TOTOLINK NR1800X V9.1.0U.6279_B20210910 was discovered to contain a double-free authenticated memory disclosure via the sPort/ePort parameter in the setIpPortFilterRules function. For more information, please refer to this RedPill vulnerability advisory. TOTOLINK NR1800X V9.1.0U.6279_B20210910 was discovered to contain a stack overflow via the sPort/ePort parameter in the setIpPortFilterRules function. For more information, please refer to this RedPill vulnerability advisory. TOTOLINK NR1800X V9.1.0U.6279_B20210910 was discovered to contain a double-free authenticated memory disclosure via the sPort/ePort parameter in the setIpPortFilterRules function. For more information, please refer to this RedPill vulnerability advisory. TOTOLINK NR1800X V9.1.0U.6279_B20210910 was discovered to contain a stack overflow via the sPort/ePort parameter in the setIpPortFilterRules function. For more information, please refer to this RedPill vulnerability advisory. TOTOLINK NR1800X V9.1.0U.6279_B20210910 was discovered to contain a double-free authenticated memory disclosure via

Timeline

Published on: 10/06/2022 18:17:00 UTC
Last modified on: 10/12/2022 03:08:00 UTC

References

• https://brief-nymphea-813.notion.site/NR1800X-bof-setIpPortFilterRules-fd99f83f37ad40fab7d7b376942633d2
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-41521