CVE-2025-8017

CVE-2025-8017 affects Tenda AC7 (version 15.03.06.44) in the httpd component. The vulnerability is a stack-based overflow in the function formSetMacFilterCfg within /goform/setMacFilterCfg, triggered by manipulating the deviceList input. Exploitation can be performed remotely, and public exploits...

CVE-2025-7911

D-Link DI-8100 1.0 is affected by a stack-based buffer overflow in the jhttpd component (sprintf in /upnp_ctrl.asp). The issue results from improper handling of the remove_ext_proto/remove_ext_port parameters, enabling remote exploitation. Public exploits have been disclosed. No patch/version inf...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7910

CVE-2025-7910 affects D-Link DIR-513 firmware 1.10, where Boa Webserver’s /goform/formSetWanNonLogin uses sprintf on curTime, causing a stack-based buffer overflow. The vulnerability is remotely exploitable, with publicly disclosed exploit details and high impact on confidentiality, integrity, an...

CVE-2025-7910 D-Link DIR-513 Boa Webserver formSetWanNonLogin sprintf stack-based overflow

A vulnerability classified as critical has been found in D-Link DIR-513 1.10. This affects the function sprintf of the file /goform/formSetWanNonLogin of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. It is possible to initiate the atta...

CVE-2025-7909 D-Link DIR-513 Boa Webserver formLanSetupRouterSettings sprintf stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. Affected by this issue is the function sprintf of the file /goform/formLanSetupRouterSettings of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack m...

CVE-2025-7909

The CVE-2025-7909 issue affects D-Link DIR-513 v1.0, where the Boa Webserver’s /goform/formLanSetupRouterSettings uses sprintf on the curTime argument, enabling a stack-based buffer overflow. This can be triggered remotely and the exploit has been publicly disclosed. Reports indicate the vulnerab...

CVE-2025-7908 D-Link DI-8100 jhttpd ddns.asp sprintf stack-based overflow

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7908

CVE-2025-7908 affects D-Link DI-8100 v1.0 (jhttpd) with a stack-based overflow in sprintf() for /ddns.asp?opt=add via the mx argument. Exploitation is remote and payloads have been disclosed; CVSS indicates HIGH risk. There is no publicly available fix version information in the provided document...

CVE-2025-7908 D-Link DI-8100 jhttpd ddns.asp sprintf stack-based overflow

A vulnerability was found in D-Link DI-8100 1.0. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file /ddns.asp?opt=add of the component jhttpd. The manipulation of the argument mx leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7805

A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromPptpUserSetting of the file /goform/PPTPUserSetting. The manipulation of the argument delno leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit...

CVE-2025-7855 Tenda FH451 qossetting fromqossetting stack-based overflow

A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromqossetting of the file /goform/qossetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-7855

CVE-2025-7855 affects Tenda FH451 1.0.0.9, where the fromqossetting function in /goform/qossetting mishandles the page argument, causing a stack-based buffer overflow. The vulnerability can be exploited remotely, with high impact on confidentiality, integrity, and availability. Connected sources ...

CVE-2025-7855 Tenda FH451 qossetting fromqossetting stack-based overflow

A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromqossetting of the file /goform/qossetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-7853 Tenda FH451 SetIpBind fromSetIpBind stack-based overflow

A vulnerability was found in Tenda FH451 1.0.0.9. It has been rated as critical. This issue affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...

CVE-2025-7853 Tenda FH451 SetIpBind fromSetIpBind stack-based overflow

A vulnerability was found in Tenda FH451 1.0.0.9. It has been rated as critical. This issue affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...

CVE-2025-7853

CVE-2025-7853 affects Tenda FH451 v1.0.0.9. The vulnerability is in the function fromSetIpBind of the file /goform/SetIpBind, where manipulation of the page argument triggers a stack-based buffer overflow. It is described as remotely exploitable, with the exploit publicly disclosed. Several conne...

CVE-2025-7807 Tenda FH451 SafeUrlFilter fromSafeUrlFilter stack-based overflow

A vulnerability, which was classified as critical, has been found in Tenda FH451 1.0.0.9. This issue affects the function fromSafeUrlFilter of the file /goform/SafeUrlFilter. The manipulation of the argument Go/page leads to stack-based buffer overflow. The attack may be initiated remotely. The...

CVE-2025-7807

CVE-2025-7807 affects Tenda FH451 1.0.0.9 in the fromSafeUrlFilter function of /goform/SafeUrlFilter. The issue is a stack-based buffer overflow triggered by manipulating the Go/page argument, with a network-reachable vector and an exploit that has been disclosed publicly. Some connected sources ...