CVE-2025-25635 | TOTOLINK A3002R 1.1.1-B20200824.0128 /bin/boa formIpv6Setup pppoe_dns1 buffer overflow

CVE-2025-25635 | TOTOLINK A3002R 1.1.1-B20200824.0128 /bin/boa formIpv6Setup pppoe_dns1 buffer overflow

A vulnerability classified as critical was found in TOTOLINK A3002R 1.1.1-B20200824.0128. This vulnerability affects the function formIpv6Setup of the file /bin/boa. The manipulation of the argument pppoe_dns1 leads to buffer overflow. This vulnerability was named CVE-2025-25635. The attack can be initiated remotely. There is no exploit available.