CVE-2025-8159 D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...

CVE-2025-8159

CVE-2025-8159 affects D-Link DIR-513 (firmware 1.0). The vulnerability is in the HTTP POST Request Handler, specifically the formLanguageChange function in /goform/formLanguageChange. Manipulating the curTime argument triggers a stack-based buffer overflow, with remote exploitation possible. The ...

CVE-2025-8159 D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...

CVE-2025-8131 Tenda AC20 SetStaticRouteCfg stack-based overflow

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-8131 Tenda AC20 SetStaticRouteCfg stack-based overflow

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-8131

CVE-2025-8131 affects Tenda AC20 firmware 16.03.08.05. A stack-based buffer overflow occurs in the processing of the list parameter in /goform/SetStaticRouteCfg, enabling remote exploitation. Multiple sources confirm the vulnerability and public exploit availability. Affected devices can crash or...

CVE-2025-8060 Tenda AC23 httpd setMacFilterCfg sub_46C940 stack-based overflow

A vulnerability has been found in Tenda AC23 16.03.07.52 and classified as critical. Affected by this vulnerability is the function sub46C940 of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack ca...

CVE-2025-8060

The CVE-2025-8060 entry concerns Tenda AC23 (firmware 16.03.07.52). A stack-based buffer overflow is triggered in the httpd component, specifically in setMacFilterCfg (function sub_46C940) by manipulating the deviceList argument. The vulnerability can be exploited remotely, and public exploit det...

CVE-2025-8060 Tenda AC23 httpd setMacFilterCfg sub_46C940 stack-based overflow

A vulnerability has been found in Tenda AC23 16.03.07.52 and classified as critical. Affected by this vulnerability is the function sub46C940 of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack ca...

CVE-2025-8017 Tenda AC7 httpd setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to laun...

CVE-2025-8017 Tenda AC7 httpd setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to laun...

CVE-2025-8017

CVE-2025-8017 affects Tenda AC7 (version 15.03.06.44) in the httpd component. The vulnerability is a stack-based overflow in the function formSetMacFilterCfg within /goform/setMacFilterCfg, triggered by manipulating the deviceList input. Exploitation can be performed remotely, and public exploits...

CVE-2025-7911

D-Link DI-8100 1.0 is affected by a stack-based buffer overflow in the jhttpd component (sprintf in /upnp_ctrl.asp). The issue results from improper handling of the remove_ext_proto/remove_ext_port parameters, enabling remote exploitation. Public exploits have been disclosed. No patch/version inf...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7910

CVE-2025-7910 affects D-Link DIR-513 firmware 1.10, where Boa Webserver’s /goform/formSetWanNonLogin uses sprintf on curTime, causing a stack-based buffer overflow. The vulnerability is remotely exploitable, with publicly disclosed exploit details and high impact on confidentiality, integrity, an...

CVE-2025-7910 D-Link DIR-513 Boa Webserver formSetWanNonLogin sprintf stack-based overflow

A vulnerability classified as critical has been found in D-Link DIR-513 1.10. This affects the function sprintf of the file /goform/formSetWanNonLogin of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. It is possible to initiate the atta...

CVE-2025-7909 D-Link DIR-513 Boa Webserver formLanSetupRouterSettings sprintf stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. Affected by this issue is the function sprintf of the file /goform/formLanSetupRouterSettings of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack m...

CVE-2025-7909

The CVE-2025-7909 issue affects D-Link DIR-513 v1.0, where the Boa Webserver’s /goform/formLanSetupRouterSettings uses sprintf on the curTime argument, enabling a stack-based buffer overflow. This can be triggered remotely and the exploit has been publicly disclosed. Reports indicate the vulnerab...

CVE-2025-7908 D-Link DI-8100 jhttpd ddns.asp sprintf stack-based overflow

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...