A critical memory corruption vulnerability in the TOTOLINK N302R Plus router firmware could lead to device instability or unauthorized control.

The vulnerability resides in the /boafrm/formFilter endpoint of the HTTP POST Request Handler. An attacker can manipulate the 'url' argument to trigger a buffer overflow, resulting in memory corruption.

With a CVSS score of 8.8, this vulnerability carries significant risk. Exploitation could lead to a denial-of-service condition (device crash) or potentially allow for remote code execution, compromising the confidentiality, integrity, and availability of the affected network infrastructure.

Immediate Action: Confirm your firmware version and apply the latest security patches provided by TOTOLINK.

Proactive Monitoring: Review web access logs for suspicious input strings within the 'url' parameter sent to the /boafrm/formFilter endpoint.

Compensating Controls: Implement a Web Application Firewall (WAF) or access control list (ACL) to restrict access to the device management interface.

Public Exploit Available: True

The potential for memory corruption makes this a high-priority issue. Network administrators should immediately evaluate the exposure of the management interface and apply all vendor-recommended firmware updates to mitigate the risk of compromise.