Share:

CVE-2022-44258

Critical 8.8

TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter command in the setTracerouteCfg function.

Published November 23, 2022.

Affected software

Totolink Lr350 Firmware

Get alerts for Totolink Lr350 Firmware

Reference links

https://brief-nymphea-813.notion.site/LR350-bof-setTracerouteCfg-cca08814d6b24733ade00b2dae1d4c1a