{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2026-4976/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["critical"],"_cs_tags":["cve-2026-4976","buffer-overflow","totolink","router","remote-code-execution"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eA critical buffer overflow vulnerability, CVE-2026-4976, has been identified in Totolink LR350 routers running firmware version 9.3.5u.6369_B20220309. The vulnerability resides in the \u003ccode\u003esetWiFiGuestCfg\u003c/code\u003e function within the \u003ccode\u003e/cgi-bin/cstecgi.cgi\u003c/code\u003e file. By crafting a malicious HTTP request and manipulating the \u003ccode\u003essid\u003c/code\u003e argument, a remote, unauthenticated attacker can trigger a buffer overflow, potentially leading to arbitrary code execution on the device. The availability of a public exploit…\u003c/p\u003e\n","date_modified":"2026-03-27T21:17:28Z","date_published":"2026-03-27T21:17:28Z","id":"/briefs/2026-03-totolink-buffer-overflow/","summary":"A buffer overflow vulnerability in Totolink LR350 version 9.3.5u.6369_B20220309 allows a remote attacker to execute arbitrary code by manipulating the 'ssid' argument in the setWiFiGuestCfg function.","title":"Totolink LR350 Remote Buffer Overflow Vulnerability (CVE-2026-4976)","url":"https://feed.craftedsignal.io/briefs/2026-03-totolink-buffer-overflow/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2026-4976","version":"https://jsonfeed.org/version/1.1"}