Vulnerability Details CVE-2025-28028
TOTOLINK A830R V4.1.2cu.5182_B20201102, A950RG V4.1.2cu.5161_B20200903, A3000RU V5.9c.5185_B20201128, and A3100R V4.1.2cu.5247_B20211129 were found to contain a buffer overflow vulnerability in downloadFile.cgi through the v5 parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.4%
CVSS Severity
CVSS v3 Score 7.3
References
Products affected by CVE-2025-28028
-
cpe:2.3:h:totolink:a3000ru:-
-
cpe:2.3:h:totolink:a3100r:-
-
cpe:2.3:h:totolink:a830r:-
-
cpe:2.3:h:totolink:a950rg:-
-
cpe:2.3:o:totolink:a3000ru_firmware:5.9c.5185_b20201128
-
cpe:2.3:o:totolink:a3100r_firmware:4.1.2cu.5247_b20211129
-
cpe:2.3:o:totolink:a830r_firmware:4.1.2cu.5182_b20201102
-
cpe:2.3:o:totolink:a950rg_firmware:4.1.2cu.5161_b20200903