HackerFeeds
All CVEs

CVE-2026-15701

CRITICAL9.8

Published 2026-07-14 · Updated 2026-07-14 · Source cna@vuldb.com

Description

A weakness has been identified in Totolink NR1800X 9.1.0u.6279_B20210910. Affected by this issue is the function Form_Logout of the file /formLogout.htm of the component lighttpd. This manipulation of the argument Host causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks.

CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-119CWE-121
View on NVD