{"id":56516,"date":"2025-07-01T21:56:11","date_gmt":"2025-07-01T21:56:11","guid":{"rendered":""},"modified":"2025-08-07T11:27:20","modified_gmt":"2025-08-07T17:27:20","slug":"cve-2025-6627-critical-buffer-overflow-vulnerability-in-totolink-a702r-4-0-0-b20230721-1521","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-6627-critical-buffer-overflow-vulnerability-in-totolink-a702r-4-0-0-b20230721-1521\/","title":{"rendered":"CVE-2025-6627: Critical Buffer Overflow Vulnerability in TOTOLINK A702R 4.0.0-B20230721.1521<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

The CVE-2025-6627 is a critical vulnerability discovered in TOTOLINK A702R 4.0.0-B20230721.1521, a widely used wireless router. The vulnerability lies in an unknown code of the file \/boafrm\/formIpv6Setup of the HTTP POST Request Handler component. This vulnerability is particularly serious because it can be exploited remotely<\/a>, leading to potential system compromise and data leakage.
\nThe impact of this vulnerability<\/a> is significant. Unpatched devices are at risk of being exploited, potentially leading to unauthorized system access<\/a>, data corruption, or even complete system control. This vulnerability is not just a threat to individual users<\/a>, but also to enterprises that use this technology, potentially impacting their operational integrity and data security.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-6627
\nSeverity: Critical (CVSS: 8.8)
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: Potential system<\/a> compromise or data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n