TOTOLINK A3600R Buffer Overflow Vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router manufactured by China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3600R. The vulnerability originates from the langType parameter in the setLanguageCfg function of the /cgi-bin/cstecgi.cgi file. An...

TOTOLINK A3600R Buffer Overflow Vulnerability (CNVD-2025-08345)

The TOTOLINK A3600R is a wireless router. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that stems from improper handling of the deviceMac and deviceName parameters. An attacker can exploit this vulnerability to execute arbitrary code to gain control of the device...

TOTOLINK A3600R 安全漏洞

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from improper handling of the FileName parameter in the setUploadSetting function of the /cgi-bin/cstecgi.cgi file. An...

TOTOLINK A3600R cstecgi.cgi file getSaveConfig function buffer overflow vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China Gion Electronics. The TOTOLINK A3600R suffers from a buffer overflow vulnerability, which is located in the /cgi-bin/cstecgi.cgi?action=save&setting file, and stems from improper handling of the httphost parameter. An attacker can...

TOTOLINK A3600R cstecgi.cgi file setTelnetCfg function command injection vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a command injection vulnerability that originates from improper handling of the telnetenabled parameter in the setTelnetCfg function of the /cgi-bin/cstecgi.cgi file. An...

TOTOLINK A3600R cstecgi.cgi file setUploadSetting function buffer overflow vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from improper handling of the FileName parameter in the setUploadSetting function of the /cgi-bin/cstecgi.cgi file. An...

TOTOLINK A3600R cstecgi.cgi file setIpQosRules function buffer overflow vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from improper handling of the comment parameter in the setIpQosRules function of the /cgi-bin/cstecgi.cgi file. An attacker...

TOTOLINK A3600R cstecgi.cgi file setUpgradeFW function buffer overflow vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from improper handling of the FileName parameter in the setUpgradeFW function of the /cgi-bin/cstecgi.cgi file. An attacker...

TOTOLINK A3600R Buffer Overflow Vulnerability

TOTOLINK A3600R is a 6-antenna 1200M wireless router from China's TOTOLINK , mainly used to provide Wi-Fi access, network routing and parental control. The TOTOLINK A3600R suffers from a buffer overflow vulnerability that originates from improper handling of the webWlanIdx parameter in the...

The vulnerabilities of the CPCI85 and SICORE processor control modules from Siemens SICAM, such as CP-8031, CP-8050, and SICAM EGS, allow a hacker to gain full control over the device.

The vulnerability of the CPCI85 and SICORE processor module control systems from Siemens SICAM, such as CP-8031, CP-8050, and SICAM EGS, stems from the lack of necessary authentication checks during password reset operations. Exploiting this vulnerability allows a remote attacker to gain full...

Supportability- Remote Support on Android Devices with Samsung Knox

Remote Support on Android Devices are only supported with Samsung Knox. There are two types of remote support one can enable for a Samsung KNOX device: Basic Support: This allows us to view diagnostic information about the device,for examplesystem information, processes that are running, task...

Session Smart Router Security Vulnerability

Session Smart Router is Juniper's designed to provide users with a superior connectivity experience, the router is built on an application-aware and zero-trust secure network architecture that meets the most stringent enterprise performance, security and availability requirements. A security...

The vulnerability of the microprogramming software of Schneider Electric PowerLogic P5 relay protection devices, related to the use of cryptographic algorithms with defects, allows a intruder to cause malfunctions during maintenance, restart the device, or gain full control over the device.

The vulnerability of the microprogramming software of Schneider Electric PowerLogic P5 relay protection devices for electrical networks relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow attackers to cause malfunctions in the devic...

PT-2024-21411 · Finalwire · Aida64 Engineer +3

Name of the Vulnerable Software and Affected Versions: FinalWire AIRDA Extreme versions 7.00.6700 and before AIDA64 Engineer versions 7.00.6700 and before AIDA64 Business versions 7.00.6700 and before AIDA64 Network Audit versions 7.00.6700 and before Description: An issue in the mentioned softwa...

PT-2024-5165 · Asus · Asus Fan Xpert +1

Name of the Vulnerable Software and Affected Versions: ASUS Fan Xpert versions prior to 10013 Description: An issue in the DeviceIoControl component allows an attacker to execute arbitrary code via crafted IOCTL requests. The vulnerability is related to a buffer overflow in the AsInsHelp64.sys...

PT-2024-21961 · Bkav · Bkav Home +1

Name of the Vulnerable Software and Affected Versions: Bkav Home version 7816, build 2403161130 Description: The issue is related to a Memory Information Leak vulnerability. It can be triggered by using the 0x222240 IOCTL code of the BkavSDFlt.sys driver. Recommendations: For Bkav Home version...

CVE-2023-38297

An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...

Cisco Releases Security Updates for IOS XR Software

Cisco released security updates to address vulnerabilities in Cisco IOS XR software. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the following advisories and apply the necessary updates:...

The vulnerability of the QTS, QuTS Hero, QuTScloud, and myQNAPcloud operating systems lies in the lack of authentication procedures, which allow attackers to gain full access to devices controlled by the vulnerable operating system.

The vulnerability of the QTS, QuTS Hero, QuTScloud, and myQNAPcloud operating systems is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain full access to devices controlled by the vulnerable operating syste...

kernel: GSM multiplexing race condition leads to privilege escalation

A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOCSETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free problem on a struct gsmdlci while restarting th...