CVE-2026-2959

A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub44E0F8 of the file /boafrm/formNewSchedule. Performing a manipulation of the argument url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit i...

CVE-2026-2961

D-Link DWR-M960 (firmware 1.01.07) VPN Configuration Endpoint formVpnConfigSetup sub_4196C4 is vulnerable: manipulating the argument submit-url causes a stack-based overflow. The issue is exploitable remotely and has been disclosed publicly. CVSS details vary by source (up to 8.8–9.0 in provided ...

CVE-2026-2961 D-Link DWR-M960 VPN Configuration Endpoint formVpnConfigSetup sub_4196C4 stack-based overflow

A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub4196C4 of the file /boafrm/formVpnConfigSetup of the component VPN Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible to be carried...

CVE-2026-2961 D-Link DWR-M960 VPN Configuration Endpoint formVpnConfigSetup sub_4196C4 stack-based overflow

A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub4196C4 of the file /boafrm/formVpnConfigSetup of the component VPN Configuration Endpoint. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible to be carried...

CVE-2026-2960 D-Link DWR-M960 formDhcpv6s sub_468D64 stack-based overflow

A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub468D64 of the file /boafrm/formDhcpv6s. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been published and...

CVE-2026-2960

The CVE-2026-2960 affects D-Link DWR-M960 firmware 1.01.07. A flaw in the /boafrm/formDhcpv6s module’s sub_468D64 function allows manipulation of the submit-url to cause a stack-based buffer overflow, enabling remote access. Exploit details have been published and may be used. Remediation recomme...

CVE-2026-2960

A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub468D64 of the file /boafrm/formDhcpv6s. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been published and...

CVE-2026-2960 D-Link DWR-M960 formDhcpv6s sub_468D64 stack-based overflow

A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub468D64 of the file /boafrm/formDhcpv6s. Executing a manipulation of the argument submit-url can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been published and...

CVE-2025-69700

Tenda FH1203 V2.0.1.6 contains a stack-based buffer overflow vulnerability in the modifyaddclientprio function, which is reachable via the formSetClientPrio CGI handler...

CVE-2025-69700

Tenda FH1203 V2.0.1.6 contains a stack-based buffer overflow vulnerability in the modifyaddclientprio function, which is reachable via the formSetClientPrio CGI handler...

Tenda FH1203 安全漏洞

The Tenda FH1203 is a wireless router produced by the Chinese company Tenda. The Tenda FH1203 V2.0.1.6 version has a security vulnerability. This vulnerability stems from a stack-based buffer overflow in the modifyaddclientprio function, which may allow for the execution of arbitrary code...

CVE-2025-69700

CVE-2025-69700 affects Tenda FH1203 V2.0.1.6. The vulnerability is a stack-based buffer overflow in the function modify_add_client_prio, reachable via the formSetClientPrio CGI handler. CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (Network attack, low complexity, no user interaction, high impact...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from incorrect handling of the parameter “saveapply” in the function “sub457C5C” within the file /boafrm/formWsc, which may lead to a stack...

LibTIFF 安全漏洞

LibTIFF is an open-source library for reading and writing TIFF Tagged Image File Format files. This library includes some command-line tools for processing TIFF files. Versions of LibTIFF prior to v4.7.1 have security vulnerabilities, which stem from a stack overflow vulnerability in the...

CVE-2025-61144

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function...

CVE-2025-61144

CVE-2025-61144: libtiff up to v4.7.1 contains a stack overflow in readSeparateStripsIntoBuffer. Connected advisories (Unity Linux, SUSE, Amazon Linux, Ubuntu, Photon OS, etc.) confirm libtiff exposure and indicate fixed versions in their security updates. Affected: libtiff up to 4.7.1 on multiple...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from incorrect handling of the parameter “submit-url” in the function “sub468D64” within the file “file/boafrm/formDhcpv6s”, which may lead to...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. The D-Link DWR-M960 version 1.01.07 has a security vulnerability. This vulnerability stems from incorrect handling of the parameter url in the function sub44E0F8 within the file /file/boafrm/formNewSchedule, which may lead to a stack...

CVE-2025-61144

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function...

D-Link DWR-M960 安全漏洞

The D-Link DWR-M960 is a router produced by D-Link Corporation. Version 1.01.07 of the D-Link DWR-M960 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters submitted by the function sub4196C4 in the component VPN Configuration Endpoint, specifically...