CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-44259

TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter week, sTime, and eTime in the setParentalRules function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.9%

CVSS Severity

CVSS v3 Score 8.8

References

https://brief-nymphea-813.notion.site/LR350-bof-setParentalRules-fe0c0cc8b9bd44b48c527f76e69d402a
https://brief-nymphea-813.notion.site/LR350-bof-setParentalRules-fe0c0cc8b9bd44b48c527f76e69d402a

Products affected by CVE-2022-44259

Totolink » Lr350 » Version: N/A

cpe:2.3:h:totolink:lr350:-
Totolink » Lr350 Firmware » Version: 9.3.5u.6369_b20220309

cpe:2.3:o:totolink:lr350_firmware:9.3.5u.6369_b20220309

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-44259

Products

Pricing

Contact Us