CVE-2025-6565

CVE-2025-6565 affects Netgear WNCE3001 1.0.0.50. The HTTP POST Request Handler’s http_d function mishandles the Host argument, causing a stack-based buffer overflow. Exploitation can be remote and public exploits have been disclosed. Connected documents confirm the vulnerability and its root caus...

CVE-2025-6292

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6368

A vulnerability was found in D-Link DIR-619L 2.06B01. It has been rated as critical. This issue affects the function formSetEmail of the file /goform/formSetEmail. The manipulation of the argument curTime/config.smtpemailsubject leads to stack-based buffer overflow. The attack may be initiated...

CVE-2025-6114 D-Link DIR-619L form_portforwarding stack-based overflow

A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this vulnerability is the function formportforwarding of the file /goform/formportforwarding. The manipulation of the argument ingressname%d/schedname%d/name%d leads to stack-based buffer overflow. T...

CVE-2025-5635

A vulnerability classified as critical was found in PCMan FTP Server 2.0.7. This vulnerability affects unknown code of the component PLS Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used...

CVE-2025-5551

CVE-2025-5551 affects FreeFloat FTP Server 1.0, with the SYSTEM Command Handler component implicated. The issue is a buffer overflow caused by improper validation of input data length, enabling remote exploitation. Multiple sources describe it as critical (high impact on confidentiality, integrit...

CVE-2025-5357

CVE-2025-5357 affects FreeFloat FTP Server 1.0, where the PWD Command Handler is vulnerable to a buffer overflow. The root cause is improper validation of input data length in the PWD handler, allowing remote exploitation. Publicly disclosed exploit details exist and a remote attack appears feasi...

CVE-2024-0922

A vulnerability classified as critical was found in Tenda AC10U 15.03.06.49multiTDE01. Affected by this vulnerability is the function formQuickIndex. The manipulation of the argument PPPOEPassword leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been...

CVE-2021-3382

Stack buffer overflow vulnerability in gitea 1.9.0 through 1.13.1 allows remote attackers to cause a denial of service crash via vectors related to a file path...

CVE-2025-5052

A vulnerability classified as critical was found in FreeFloat FTP Server 1.0. Affected by this vulnerability is an unknown functionality of the component LS Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the publi...

CVE-2025-4824

A vulnerability classified as critical has been found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of the file /boafrm/formWsc of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possib...

CVE-2025-4846

A vulnerability, which was classified as critical, was found in FreeFloat FTP Server 1.0. This affects an unknown part of the component MPUT Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and...

CVE-2025-4254

A vulnerability was found in PCMan FTP Server 2.0.7. It has been rated as critical. Affected by this issue is some unknown functionality of the component LIST Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the...

CVE-2025-4239

The CVE-2025-4239 entry concerns PCMan FTP Server 2.0.7, where the TYPE Command Handler component suffers a buffer overflow due to improper validation of input length. Multiple connected sources confirm remote exploitation potential and that the exploit has been disclosed publicly. The impact is ...

CVE-2025-4007

A vulnerability classified as critical was found in Tenda W12 and i24 3.0.0.42887/3.0.0.53644. Affected by this vulnerability is the function cgidhcpsCfgSet of the file /goform/modules of the component httpd. The manipulation of the argument json leads to stack-based buffer overflow. The attack c...

CVE-2025-3785 D-Link DWR-M961 Authorization Interface formStaticDHCP stack-based overflow

A vulnerability has been found in D-Link DWR-M961 1.1.36 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formStaticDHCP of the component Authorization Interface. The manipulation of the argument Hostname leads to stack-based buffer overflow. The attack can ...

CVE-2025-2924

A vulnerability, which was classified as problematic, was found in HDF5 up to 1.14.6. This affects the function H5HLfldeserialize of the file src/H5HLcache.c. The manipulation of the argument freeblock leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The...

Linux Distros Unpatched Vulnerability : CVE-2023-32324

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a...

CVE-2025-1147 GNU Binutils nm nm.c internal_strlen buffer overflow

A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function sanitizer::internalstrlen of the file binutils/nm.c of the component nm. The manipulation of the argument const leads to buffer overflow. The attack can be launched...

CVE-2024-3879

A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25633. This affects the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has...