CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/06/23 8:38 a.m.•6 views

CVE-2025-6374

A vulnerability was found in D-Link DIR-619L 2.06B01 and classified as critical. This issue affects the function formSetACLFilter of the file /goform/formSetACLFilter. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit...

9CVSS7.4AI score0.0082EPSS

RedhatCVE•added 2025/06/23 8:38 a.m.•5 views

CVE-2025-6373

A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. This vulnerability affects the function formSetWizard1 of the file /goform/formWlSiteSurvey. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack can be initiated remotely. T...

9CVSS7.4AI score0.00745EPSS

RedhatCVE•added 2025/06/23 8:38 a.m.•6 views

CVE-2025-6328

A vulnerability was found in D-Link DIR-815 1.01. It has been declared as critical. This vulnerability affects the function sub403794 of the file hedwig.cgi. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public a...

9CVSS7.4AI score0.00806EPSS

RedhatCVE•added 2025/06/23 8:38 a.m.•6 views

CVE-2025-6368

A vulnerability was found in D-Link DIR-619L 2.06B01. It has been rated as critical. This issue affects the function formSetEmail of the file /goform/formSetEmail. The manipulation of the argument curTime/config.smtpemailsubject leads to stack-based buffer overflow. The attack may be initiated...

9CVSS7.4AI score0.00849EPSS

Positive Technologies•added 2025/06/23 12:0 a.m.•6 views

PT-2025-26620 · NetGear · Netgear Ex6150

Name of the Vulnerable Software and Affected Versions: Netgear EX6150 versions 1.0.0.46 through 1.0.76 Description: A critical vulnerability has been identified in Netgear EX6150. The issue resides within the sub 410090 function and leads to a stack-based buffer overflow. Remote attackers can...

9CVSS8.7AI score0.00976EPSS

Exploits1References15

NVD•added 2025/06/22 6:15 p.m.•5 views

CVE-2025-6486

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been declared as critical. This vulnerability affects the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack can ...

NVD•added 2025/06/22 6:15 p.m.•8 views

CVE-2025-6487

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been rated as critical. This issue affects the function formRoute of the file /boafrm/formRoute. The manipulation of the argument subnet leads to stack-based buffer overflow. The attack may be initiated remotely. The exploi...

Cvelist•added 2025/06/22 6:0 p.m.•7 views

CVE-2025-6487 TOTOLINK A3002R formRoute stack-based overflow

Vulnrichment•added 2025/06/22 6:0 p.m.•5 views

CVE-2025-6487 TOTOLINK A3002R formRoute stack-based overflow

CVE•added 2025/06/22 6:0 p.m.•23 views

CVE-2025-6487

CVE-2025-6487 concerns TOTOLINK A3002R (version 1.1.1-B20200824.0128). The vulnerability is in the function formRoute of the file /boafrm/formRoute , where manipulating the argument subnet triggers a stack-based buffer overflow. This can be exploited remotely and may lead to arbitrary code execut...

Exploits1References5Affected Software1

CVE•added 2025/06/22 5:31 p.m.•19 views

CVE-2025-6486

Totolink A3002R is affected. The vulnerability lies in the function formWlanMultipleAP within /boafrm/formWlanMultipleAP, where mishandling the submit-url parameter causes a stack-based buffer overflow. CVE-2025-6486 is associated with this issue, with remote exploitation and public disclosure no...

Exploits1References5Affected Software1

Cvelist•added 2025/06/22 5:31 p.m.•6 views

CVE-2025-6486 TOTOLINK A3002R formWlanMultipleAP stack-based overflow

Vulnrichment•added 2025/06/22 5:31 p.m.•4 views

CVE-2025-6486 TOTOLINK A3002R formWlanMultipleAP stack-based overflow

Positive Technologies•added 2025/06/22 12:0 a.m.•4 views

PT-2025-26564 · Totolink · Totolink A3002Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3002R version 1.1.1-B20200824.0128 Description: A critical vulnerability was found in the TOTOLINK A3002R, affecting the function formWlanMultipleAP of the file /boafrm/formWlanMultipleAP. The manipulation of the argument submit-url...

9CVSS8.6AI score0.00759EPSS

Exploits1References13

NVD•added 2025/06/21 1:15 a.m.•12 views

CVE-2025-6374

9CVSS0.0082EPSS

Vulnrichment•added 2025/06/21 12:0 a.m.•3 views

CVE-2025-6374 D-Link DIR-619L formSetACLFilter stack-based overflow

9CVSS7.3AI score0.0082EPSS

Cvelist•added 2025/06/21 12:0 a.m.•6 views

CVE-2025-6374 D-Link DIR-619L formSetACLFilter stack-based overflow

9CVSS0.0082EPSS

CVE•added 2025/06/20 11:31 p.m.•25 views

CVE-2025-6373

The CVE-2025-6373 entry concerns D-Link DIR-619L (firmware 2.06B01). The vulnerability is in the function formSetWizard1 of /goform/formWlSiteSurvey, where the curTime argument is not properly validated, causing a stack-based buffer overflow. It is described as remotely exploitable with public ex...

9CVSS7.3AI score0.00745EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/06/20 11:31 p.m.•5 views

CVE-2025-6373 D-Link DIR-619L formWlSiteSurvey formSetWizard1 stack-based overflow

9CVSS0.00745EPSS