TOTOLINK NR1800X is an outstanding 5G NR indoor Wi-Fi and SIP CPE from China-based Gion Electronics (TOTOLINK), designed to provide fast and convenient deployment of NR fixed data services for homes and offices.A buffer overflow vulnerability exists in TOTOLINK NR1800X V9.1.0u.6279_B20210910 version, which stems from The lang parameter of the setLanguageCfg method lacks length validation for the input data, which can be exploited by an attacker to cause code execution.