CVE-2025-5912

The CVE-2025-5912 entry concerns D-Link DIR-632 with firmware FW103B08. A stack-based buffer overflow exists in the HTTP POST Request Handler’s do_file function. The vulnerability is exploitable remotely and affects a product that is no longer supported. Multiple connected sources provide concret...

CVE-2025-5863 Tenda AC5 SetRebootTimer formSetRebootTimer stack-based overflow

A vulnerability was found in Tenda AC5 15.03.06.47. It has been classified as critical. Affected is the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to launch the attack remotely. T...

CVE-2025-5863

CVE-2025-5863 – Tenda AC5 formSetRebootTimer buffer overflow . Affected device: Tenda AC5 (firmware 15.03.06.47). The flaw is in the function /goform/SetRebootTimer, where manipulating the rebootTime argument triggers a stack-based buffer overflow. Impact: remote code execution with high/critical...

CVE-2025-5855 Tenda AC6 SetRebootTimer formSetRebootTimer stack-based overflow

A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely...

CVE-2025-5855

The CVE-2025-5855 issue affects Tenda AC6, version 15.03.05.16, in the /goform/SetRebootTimer endpoint specifically the formSetRebootTimer function. Exploitation arises from feeding rebootTime, causing a stack-based buffer overflow. It is exploitable remotely and the exploit has been publicly dis...

CVE-2025-5853 Tenda AC6 SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-5853 Tenda AC6 SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-5849 Tenda AC15 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been classified as critical. This affects the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based buffer...

CVE-2025-5849 Tenda AC15 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been classified as critical. This affects the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based buffer...

CVE-2025-5849

CVE-2025-5849 describes a stack-based buffer overflow in Tenda AC15 firmware version 15.03.05.19_multi. The vulnerability affects the HTTP POST request handler function, specifically the /goform/SetRemoteWebCfg field formSetSafeWanWebMan, caused by improper handling of the remoteIp argument. Remo...

CVE-2025-5847 Tenda AC9 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability has been found in Tenda AC9 15.03.02.13 and classified as critical. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based...

CVE-2025-5847 Tenda AC9 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability has been found in Tenda AC9 15.03.02.13 and classified as critical. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based...

CVE-2025-5847

CVE-2025-5847 affects Tenda AC9 firmware 15.03.02.13. The vulnerability is in the HTTP POST Request Handler function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg; processing the remoteIp argument can trigger a stack-based buffer overflow. This allows a remote attacker to potentially e...

CVE-2025-5798 Tenda AC8 SetSysTimeCfg fromSetSysTime stack-based overflow

A vulnerability was found in Tenda AC8 16.03.34.09. It has been classified as critical. Affected is the function fromSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument timeType leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2025-5685 Tenda CH22 Natlimit formNatlimit stack-based overflow

A vulnerability, which was classified as critical, was found in Tenda CH22 1.0.0.1. This affects the function formNatlimit of the file /goform/Natlimit. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-5685

CVE-2025-5685 affects Tenda CH22 1.0.0.1. The vulnerability is in the function formNatlimit of the file /goform/Natlimit ; manipulating the argument page leads to a stack-based buffer overflow. Remote exploitation is possible and public exploits exist. Public sources consistently describe the sam...

CVE-2025-5640

The CVE-2025-5640 entry affects PX4-Autopilot 1.12.3, specifically the TRAJECTORY_REPRESENTATION_WAYPOINTS Message Handler in mavlink_receiver.cpp. The vulnerability is a stack-based buffer overflow triggered by processing a malformed MAVLink message (TRAJECTORY_REPRESENTATION_WAYPOINTS); local a...

CVE-2025-5640 PX4-Autopilot TRAJECTORY_REPRESENTATION_WAYPOINTS Message mavlink_receiver.cpp stack-based overflow

A vulnerability was found in PX4-Autopilot 1.12.3. It has been classified as problematic. This affects the function MavlinkReceiver::handlemessagetrajectoryrepresentationwaypoints of the file mavlinkreceiver.cpp of the component TRAJECTORYREPRESENTATIONWAYPOINTS Message Handler. The manipulation...

CVE-2025-5630

CVE-2025-5630 affects the D-Link DIR-816 router (firmware 1.10CNB05). The vulnerability exists in the /goform/form2lansetup.cgi endpoint, where manipulating the ip parameter leads to a stack-based buffer overflow. This allows remote exploitation and can impact confidentiality, integrity, and avai...

CVE-2025-5630 D-Link DIR-816 form2lansetup.cgi stack-based overflow

A vulnerability has been found in D-Link DIR-816 1.10CNB05 and classified as critical. This vulnerability affects unknown code of the file /goform/form2lansetup.cgi. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has bee...