CVE-2022-44254: Buffer Overflow
First published: Wed Nov 23 2022(Updated: )
TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter text in the setSmsCfg function.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Totolink Lr350 Firmware | =9.3.5u.6369_b20220309 | |
| TOTOLINK LR350 | ||
| All of | ||
| Totolink Lr350 Firmware | =9.3.5u.6369_b20220309 | |
| TOTOLINK LR350 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this TOTOLINK LR350 vulnerability?
The vulnerability ID for this TOTOLINK LR350 vulnerability is CVE-2022-44254.
What is the title of this TOTOLINK LR350 vulnerability?
The title of this TOTOLINK LR350 vulnerability is 'TOTOLINK LR350 V9.3.5u.6369_B20220309 contains a post-authentication buffer overflow via parameter text in the setSmsCfg function.'
What is the severity of CVE-2022-44254?
The severity of CVE-2022-44254 is high with a severity value of 8.8.
Which software version is affected by CVE-2022-44254?
TOTOLINK LR350 V9.3.5u.6369_B20220309 is the affected software version for CVE-2022-44254.
How can I fix the CVE-2022-44254 vulnerability?
To fix the CVE-2022-44254 vulnerability, update to a patched version of the Totolink LR350 firmware.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/author
- agent/last-modified-date
- agent/event
- agent/softwarecombine
- agent/tags
- agent/source
- vendor/totolink
- canonical/totolink lr350 firmware
- version/totolink lr350 firmware/9.3.5u.6369_b20220309
- canonical/totolink lr350