Critical Vulnerability Information Vulnerability Overview Vendor: TOTOLink Product: LR350 Version: V9.3.5u.6369_B20220309 Vulnerability Type: Stack Overflow Vulnerability Cause In the function, the parameter is retrieved using . If is not null, it is passed to the function and copied into the destination buffer . The function does not check the input length, leading to a buffer overflow when the parameter exceeds 255 bytes. PoC (Proof of Concept Code) Result The target router crashes and is unable to continue providing normal services.