CVE-2025-7790 D-Link DI-8100 HTTP Request menu_nat.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. This affects an unknown part of the file /menunat.asp of the component HTTP Request Handler. The manipulation of the argument outaddr/inaddr/outport/proto leads to stack-based buffer overflow. It is possib...

CVE-2025-7762

CVE-2025-7762 affects D-Link DI-8100 (16.07.26A1). The flaw is in the HTTP Request Handler's /menu_nat_more.asp processing, where input length is not properly validated, causing a stack-based buffer overflow. It can be triggered remotely and the exploit has been publicly disclosed. Multiple sourc...

CVE-2025-7762 D-Link DI-8100 HTTP Request menu_nat_more.asp stack-based overflow

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1. This issue affects some unknown processing of the file /menunatmore.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotel...

IBM WebSphere Application Server 9.x < 9.0.5.25 / Liberty 17.0.0.3 < 25.0.0.8 DoS (7239856)

The version of IBM WebSphere Application Server running on the remote host is affected by a DoS vulnerability as referenced in the 7239856 advisory. - IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service,...

CVE-2025-36097

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server to consume excessive memory resources...

CVE-2025-36097

CVE-2025-36097 affects IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7. The issue is a stack-based overflow in the server when processing specially crafted requests, leading to denial of service by consuming memory resources. The vulnerabili...

CVE-2025-36097 IBM WebSphere Application Server denial of service

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server to consume excessive memory resources...

CLSA-2025-1752655171 libxml2: Fix of 3 CVEs

CVE-2025-49794: fix use-after-free issue triggered by processing certain elements in input XML file. - CVE-2025-49796: fix memory corruption issue triggered by processing certain sch:name elements in input XML file. - CVE-2025-6021: fix integer overflow in buffer size calculations to prevent...

CVE-2025-7603 D-Link DI-8100 HTTP Request jingx.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. Affected is an unknown function of the file /jingx.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploi...

CVE-2025-7603

CVE-2025-7603 affects D-Link DI-8100 (firmware 16.07.26A1). The vulnerability is in the HTTP Request Handler’s /jingx.asp file, where an input size/length validation failure leads to a stack-based buffer overflow. This enables remote exploitation with potential arbitrary code execution or denial ...

CVE-2025-7603 D-Link DI-8100 HTTP Request jingx.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. Affected is an unknown function of the file /jingx.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploi...

CVE-2025-7602

CVE-2025-7602 affects D-Link DI-8100 (version 16.07.26A1). The vulnerability resides in the HTTP Request Handler’s processing of the /arp_sys.asp file and causes a stack-based buffer overflow. This can allow remote exploitation and has publicly disclosed exploit code. Multiple connected sources c...

CVE-2025-7602 D-Link DI-8100 HTTP Request arp_sys.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1 and classified as critical. This issue affects some unknown processing of the file /arpsys.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

CVE-2025-7602 D-Link DI-8100 HTTP Request arp_sys.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1 and classified as critical. This issue affects some unknown processing of the file /arpsys.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

CVE-2025-7598 Tenda AX1803 setWifiFilterCfg formSetWifiMacFilterCfg stack-based overflow

A vulnerability classified as critical was found in Tenda AX1803 1.0.0.1. Affected by this vulnerability is the function formSetWifiMacFilterCfg of the file /goform/setWifiFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7598 Tenda AX1803 setWifiFilterCfg formSetWifiMacFilterCfg stack-based overflow

A vulnerability classified as critical was found in Tenda AX1803 1.0.0.1. Affected by this vulnerability is the function formSetWifiMacFilterCfg of the file /goform/setWifiFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7597 Tenda AX1803 setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability classified as critical has been found in Tenda AX1803 1.0.0.1. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2025-7597 Tenda AX1803 setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability classified as critical has been found in Tenda AX1803 1.0.0.1. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2025-7596 Tenda FH1205 WifiExtraSet formWifiExtraSet stack-based overflow

A vulnerability was found in Tenda FH1205 2.0.0.7775. It has been rated as critical. This issue affects the function formWifiExtraSet of the file /goform/WifiExtraSet. The manipulation of the argument wpapskcrypto leads to stack-based buffer overflow. The attack may be initiated remotely. The...

CVE-2025-7596

The CVE-2025-7596 entry affects Tenda FH1205 (version 2.0.0.7(775)). The vulnerability resides in the function formWifiExtraSet (file /goform/WifiExtraSet) where manipulation of the wpapsk_crypto argument causes a stack-based buffer overflow. This can be exploited remotely; the exploit has been p...