CVE advisoryCRITICAL
CVE-2025-46060
TOTOLINK N600R Firmware Buffer Overflow in UPLOAD_FILENAME Component
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A critical buffer overflow vulnerability in TOTOLINK N600R firmware's UPLOAD_FILENAME component allows remote attackers to execute arbitrary code. This could enable unauthorized code execution on network devices.