A critical buffer overflow vulnerability in the TOTOLINK X15 router firmware creates a significant risk of device compromise through malicious URL manipulation.

The flaw exists in the /boafrm/formWlanRedirect endpoint. By manipulating the 'redirect-url' argument, an attacker can trigger a buffer overflow leading to memory corruption.

The CVSS score of 8.8 underscores the severity of this flaw. If exploited, an attacker could gain unauthorized control over the router, potentially leading to total network compromise, data interception, or the disruption of critical business connectivity.

Immediate Action: Update the TOTOLINK X15 firmware to the latest available version provided by the manufacturer.

Proactive Monitoring: Monitor traffic for unusual activity targeting the /boafrm/formWlanRedirect interface.

Compensating Controls: Ensure the management interface of the router is not accessible from untrusted networks and utilize strong authentication if available.

Public Exploit Available: True

Given the critical nature of this vulnerability and the availability of public exploits, immediate remediation is required. Administrators should verify their current firmware version and apply updates as soon as they are made available by the vendor.