A critical buffer overflow vulnerability in the TOTOLINK X15 router poses a significant risk of remote code execution.

This is a buffer overflow (CWE-120) vulnerability located in the /boafrm/formDMZ component. The flaw allows an unauthenticated remote attacker to trigger the overflow by sending a maliciously crafted submit-url argument.

With a CVSS score of 8.8, this vulnerability presents a high risk of total system compromise. An attacker could exploit this to manipulate DMZ settings, potentially bypassing network security controls and gaining unauthorized access to internal resources.

Immediate Action: Consult the vendor advisory at https://vuldb.com/?id.311334 and update the device firmware to the latest available version.

Proactive Monitoring: Analyze system logs for errors or crashes associated with the /boafrm/formDMZ component, which may indicate attempted exploitation.

Compensating Controls: Disable remote management features on the router and enforce access control lists to limit who can interact with the web management interface.

Public Exploit Available: true

Given the availability of public exploits, this vulnerability is a high-priority risk. Administrators must apply the vendor-supplied firmware update immediately to ensure the integrity and security of the device.