CVE-2025-61128

Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN530HG3 firmware M30HG3V240730, and possibly other wavlink models allows attackers to execute arbitrary code via crafted referrer value POST to login.cgi...

JLSEC-2025-196 A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calcula...

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

CVE-2025-12258 TOTOLINK A3300R POST Parameter cstecgi.cg setOpModeCfg stack-based overflow

A vulnerability was detected in TOTOLINK A3300R 17.0.0cu.557B20221024. Impacted is the function setOpModeCfg of the file /cgi-bin/cstecgi.cg of the component POST Parameter Handler. The manipulation of the argument opmode results in stack-based buffer overflow. The attack may be performed from...

CVE-2025-12225

A vulnerability has been found in Tenda AC6 15.03.06.50. This issue affects some unknown processing of the file /goform/WifiGuestSet of the component HTTP Request Handler. Such manipulation of the argument shareSpeed leads to stack-based buffer overflow. The attack may be launched remotely. The...

Oracle VirtualBox VMSVGA Stack-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the VMSVGA...

EUVD-2025-35057

Stack-based Buffer Overflow in lwsadnsparselabel in warmcat libwebsockets allows, when the LWSWITHSYSASYNCDNS flag is enabled during compilation, to overflow the labelstack, when the attacker is able to sniff a DNS request in order to craft a response with a matching id containing a label longer...

CVE-2025-62579

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62580

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62580

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62580

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

EUVD-2025-34702

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62580 ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62580

Delta Electronics ASDA-Soft stack-based buffer overflow (CVE-2025-62580) is reported to affect ASDA-Soft via PAR file parsing. The root cause is lack of proper validation of the length of user-supplied data before copying to a stack-based buffer, enabling overflow. ZDI describes this as a remote ...

CVE-2025-62580 ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62579 ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62579 ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2025-62579

Delta Electronics ASDA-Soft has a PAR-file parsing stack-based buffer overflow that can lead to remote arbitrary code execution. The flaw arises from insufficient validation of user-supplied PAR data length prior to copying into a stack buffer. Exploitation is described as remote with user intera...

EUVD-2025-34703

ASDA-Soft Stack-based Buffer Overflow Vulnerability...

CVE-2023-46718

A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and 6.4.6 through 6.4.15 and 6.2.9 through 6.2.16 and 6.0.13 through 6.0.18 allows attacker to execute unauthorized code or commands via specially crafted CLI commands...

CVE-2025-61856

A stack-based buffer overflow vulnerability exists in VS6ComFile!CV7BaseMap::WriteV7DataToRom of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...