CVE-2025-8017 Tenda AC7 httpd setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to laun...

CVE-2025-8017

CVE-2025-8017 affects Tenda AC7 (version 15.03.06.44) in the httpd component. The vulnerability is a stack-based overflow in the function formSetMacFilterCfg within /goform/setMacFilterCfg, triggered by manipulating the deviceList input. Exploitation can be performed remotely, and public exploits...

CVE-2025-8017 Tenda AC7 httpd setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg of the component httpd. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to laun...

PT-2025-30460

Name of the Vulnerable Software and Affected Versions Ashlar-Vellum Graphite VC6 affected versions not specified Description The software contains a stack-based buffer overflow in the file parsing component. This issue allows for remote code execution. Recommendations At the moment, there is no...

CVE-2025-7855

A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromqossetting of the file /goform/qossetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely...

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Asset and Service Management (CVE-2025-36097)

Summary IBM WebSphere Application Server is shipped as a component of Maximo Asset Management, Maximo Industry Solutions including Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas, and Maximo for Utilities, Maximo Adapter for Primavera,...

CVE-2025-7921 ASKEY｜modem - Stack-based Buffer Overflow

Certain modem models developed by Askey has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the program's execution flow and potentially execute arbitrary code...

CVE-2025-7921 ASKEY｜modem - Stack-based Buffer Overflow

Certain modem models developed by Askey has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the program's execution flow and potentially execute arbitrary code...

CVE-2025-7921

CVE-2025-7921 affects Askey modem models (e.g., RTF8207w, RTF8217). The vulnerability is a stack-based buffer overflow in the modem’s handling of input, enabling unauthenticated remote attackers to potentially execute arbitrary code and take control of the device. The CVSS metrics indicate CRITIC...

PT-2025-30971 · D Link · D-Link Dir-513

Name of the Vulnerable Software and Affected Versions: D-Link DIR-513 versions up to 1.10 Description: A critical vulnerability exists in D-Link DIR-513. The issue is a stack-based buffer overflow within the formSetWanL2TPcallback function, located in the /goform/formSetWanL2TPtriggers file of th...

PT-2025-30236 · Askey · Askey Modem

Name of the Vulnerable Software and Affected Versions: Askey modem models affected versions not specified Description: Certain modem models developed by Askey have a Stack-based Buffer Overflow vulnerability. This allows unauthenticated remote attackers to control the program's execution flow and...

CVE-2025-7911

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7911

D-Link DI-8100 1.0 is affected by a stack-based buffer overflow in the jhttpd component (sprintf in /upnp_ctrl.asp). The issue results from improper handling of the remove_ext_proto/remove_ext_port parameters, enabling remote exploitation. Public exploits have been disclosed. No patch/version inf...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7911 D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow

A vulnerability classified as critical was found in D-Link DI-8100 1.0. This vulnerability affects the function sprintf of the file /upnpctrl.asp of the component jhttpd. The manipulation of the argument removeextproto/removeextport leads to stack-based buffer overflow. The attack can be initiate...

CVE-2025-7910

CVE-2025-7910 affects D-Link DIR-513 firmware 1.10, where Boa Webserver’s /goform/formSetWanNonLogin uses sprintf on curTime, causing a stack-based buffer overflow. The vulnerability is remotely exploitable, with publicly disclosed exploit details and high impact on confidentiality, integrity, an...

CVE-2025-7910 D-Link DIR-513 Boa Webserver formSetWanNonLogin sprintf stack-based overflow

A vulnerability classified as critical has been found in D-Link DIR-513 1.10. This affects the function sprintf of the file /goform/formSetWanNonLogin of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. It is possible to initiate the atta...

CVE-2025-7910 D-Link DIR-513 Boa Webserver formSetWanNonLogin sprintf stack-based overflow

A vulnerability classified as critical has been found in D-Link DIR-513 1.10. This affects the function sprintf of the file /goform/formSetWanNonLogin of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. It is possible to initiate the atta...

CVE-2025-7909 D-Link DIR-513 Boa Webserver formLanSetupRouterSettings sprintf stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. Affected by this issue is the function sprintf of the file /goform/formLanSetupRouterSettings of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack m...

CVE-2025-7909

The CVE-2025-7909 issue affects D-Link DIR-513 v1.0, where the Boa Webserver’s /goform/formLanSetupRouterSettings uses sprintf on the curTime argument, enabling a stack-based buffer overflow. This can be triggered remotely and the exploit has been publicly disclosed. Reports indicate the vulnerab...