CVE-2025-6121 D-Link DIR-632 HTTP POST Request get_pure_content stack-based overflow

A vulnerability, which was classified as critical, has been found in D-Link DIR-632 FW103B08. Affected by this issue is the function getpurecontent of the component HTTP POST Request Handler. The manipulation of the argument Content-Length leads to stack-based buffer overflow. The attack may be...

CVE-2025-6121

CVE-2025-6121 affects D-Link DIR-632 FW103B08. The vulnerability is a stack-based overflow in the HTTP POST Request Handler’s get_pure_content function caused by incorrect handling of the Content-Length argument. It is exploitable remotely, with the exploit publicly disclosed, and affects product...

CVE-2025-6115 D-Link DIR-619L form_macfilter stack-based overflow

A vulnerability was found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this issue is the function formmacfilter. The manipulation of the argument machostname%d/schedname%d leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclos...

CVE-2025-6115 D-Link DIR-619L form_macfilter stack-based overflow

A vulnerability was found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this issue is the function formmacfilter. The manipulation of the argument machostname%d/schedname%d leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclos...

CVE-2025-6114

CVE-2025-6114 affects D-Link DIR-619L firmware 2.06B01. The vulnerability is a stack-based buffer overflow in the form_portforwarding function (input arguments ingress_name_%d/sched_name_%d/name_%d) that can be exploited remotely. Public PoC/exploit information exists; this issue is reported to a...

CVE-2025-6111

CVE-2025-6111 affects Tenda FH1205 (firmware 2.0.0.7(775)). The vulnerability is a stack-based buffer overflow in the fromVirtualSer function of /goform/VirtualSer caused by improper validation of the argument page. It can be triggered remotely, with in-the-wild PoC activity reported. No patch de...

CVE-2025-6110 Tenda FH1201 SafeMacFilter stack-based overflow

A vulnerability classified as critical has been found in Tenda FH1201 1.2.0.14408. This affects an unknown part of the file /goform/SafeMacFilter. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

Stack-based Buffer Overflow

Overview nokogiri is a gem for parsing HTML, XML, SAX, and Reader. Affected versions of this package are vulnerable to Stack-based Buffer Overflow due to unsafe use of strcpy in the xmllint interactive shell command tool. An attacker can cause a crash by providing an overly long argument to any...

CVE-2025-6093 uYanki board-stm32f103rc-berial heartrate1_hal.c heartrate1_i2c_hal_write stack-based overflow

A vulnerability classified as critical was found in uYanki board-stm32f103rc-berial up to 84daed541609cb7b46854cc6672a275d1007e295. This vulnerability affects the function heartrate1i2chalwrite of the file 7.Example/hal/i2c/max30100/Manual/demo2/2/heartrate1hal.c. The manipulation of the argument...

CVE-2025-6093

The CVE-2025-6093 vulnerability is in the uYanki board-stm32f103rc-berial, affecting the function heartrate1_i2c_hal_write in 7.Example/hal/i2c/max30100/Manual/demo2/2/heartrate1_hal.c. The root cause is manipulation of the num argument, which leads to a stack-based buffer overflow. Public detail...

gstreamer1-plugins-bad-free: mingw-gstreamer1-plugins-bad-free: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

A flaw was found in GStreamer H265 Codec Parsing gstreamer1-plugins-bad-free. This vulnerability allows remote attackers to execute arbitrary code by parsing H265 slice headers...

gstreamer1-plugins-bad-free: mingw-gstreamer1-plugins-bad-free: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

A flaw was found in GStreamer H265 Codec Parsing gstreamer1-plugins-bad-free. This vulnerability allows remote attackers to execute arbitrary code by parsing H265 slice headers...

CVE-2025-5978

CVE-2025-5978 affects Tenda FH1202, version 1.2.0.14. The vulnerability is in the function fromVirtualSer of the file /goform/VirtualSer. Manipulating the argument page causes a stack-based buffer overflow, enabling remote code execution. Multiple connected sources corroborate the issue and descr...

CVE-2025-5969 D-Link DIR-632 HTTP POST Request biurl_grou FUN_00425fd8 stack-based overflow

A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN00425fd8 of the file /biurlgrou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-5969 D-Link DIR-632 HTTP POST Request biurl_grou FUN_00425fd8 stack-based overflow

A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN00425fd8 of the file /biurlgrou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-5969

The CVE-2025-5969 entry concerns D-Link DIR-632 FW103B08. Affected is the HTTP POST Request Handler, specifically the FUN_00425fd8 function in file /biurl_grou, where input length validation leads to a stack-based buffer overflow. The vulnerability can be exploited remotely and, per sources, affe...

CVE-2025-5934 Netgear EX3700 mtd sub_41619C stack-based overflow

A vulnerability was found in Netgear EX3700 up to 1.0.0.88. It has been classified as critical. Affected is the function sub41619C of the file /mtd. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...

CVE-2025-5934

Netgear EX3700 devices with firmware up to 1.0.0.88 are affected by a stack-based buffer overflow in function sub_41619C in /mtd. The vulnerability can be exploited remotely and the exploit has been disclosed publicly. A fix exists: upgrade to version 1.0.0.98. This issue affects products that ar...

CVE-2025-5912 D-Link DIR-632 HTTP POST Request do_file stack-based overflow

A vulnerability was found in D-Link DIR-632 FW103B08. It has been declared as critical. This vulnerability affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been...

CVE-2025-5912 D-Link DIR-632 HTTP POST Request do_file stack-based overflow

A vulnerability was found in D-Link DIR-632 FW103B08. It has been declared as critical. This vulnerability affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been...