CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-26736

TOTOLINK A3002RU_V3 V3.0.0-B20220304.1804 was discovered to contain a stack-based buffer overflow via the static_ipv6 parameter in the formIpv6Setup function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.5%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/0xmania/cve/tree/main/TOTOLINK-A3002RUV3.0-boa-formIpv6Setup-StackOverflow

Products affected by CVE-2026-26736

Totolink » A3002ru-V3 » Version: N/A

cpe:2.3:h:totolink:a3002ru-v3:-
Totolink » A3002ru Firmware » Version: N/A

cpe:2.3:o:totolink:a3002ru_firmware:-
Totolink » A3002ru Firmware » Version: 1.0.8

cpe:2.3:o:totolink:a3002ru_firmware:1.0.8
Totolink » A3002ru Firmware » Version: 2.0.0

cpe:2.3:o:totolink:a3002ru_firmware:2.0.0
Totolink » A3002ru Firmware » Version: 2.0.0-b20190902.1958

cpe:2.3:o:totolink:a3002ru_firmware:2.0.0-b20190902.1958
Totolink » A3002ru Firmware » Version: 2.1.1-b20230720.1011

cpe:2.3:o:totolink:a3002ru_firmware:2.1.1-b20230720.1011
Totolink » A3002ru Firmware » Version: 3.0.0-b20220304.1804

cpe:2.3:o:totolink:a3002ru_firmware:3.0.0-b20220304.1804

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-26736

Products

Pricing

Contact Us