SOUND4 LinkAndShare Transmitter 格式化字符串错误漏洞

SOUND4 LinkAndShare Transmitter is a remote control communication component from SOUND4 France. A Formatting String Error vulnerability exists in SOUND4 LinkAndShare Transmitter version 1.1.2, which stems from a Formatting String vulnerability that could lead to a memory stack overflow...

PT-2025-52620

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A flaw exists in the HTTP Request Handler component of the software. Specifically, the issue resides in an unknown part of the /goform/L7Port file. Manipulating the page argument can trigger a stack-bas...

PT-2025-52719

Name of the Vulnerable Software and Affected Versions wb2osz/direwolf Dire Wolf versions up to and including 1.8, prior to commit 694c954 Description The software contains a stack-based buffer overflow issue in the kiss rec byte function, found in src/kiss frame.c. Processing specially crafted KI...

PT-2025-52630

Name of the Vulnerable Software and Affected Versions Sharp Display Solutions projectors affected versions not specified Description A stack-based buffer overflow exists in Sharp Display Solutions projectors. This allows an attacker to potentially execute arbitrary commands and programs...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from a misbehavior of the parameter page in the file /goform/L7Port, which could result in a stack buffer overflow...

Sokol 安全漏洞

Sokol is a platform interface for Andre Weissflog individual developers. A security vulnerability exists in Sokol, which stems from a misbehavior of the function sgvalidatepipelinedesc in the library sokolgfx.h, which could lead to a stack buffer overflow...

CVE-2025-14995 Tenda FH1201 SetIpBind sprintf stack-based overflow

A vulnerability has been found in Tenda FH1201 1.2.0.14408. Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be...

CVE-2025-14995

The CVE describes a stack-based buffer overflow in Tenda FH1201 routers (version 1.2.0.14(408)) caused by mis-handling of the page parameter in the sprintf call in /goform/SetIpBind. The issue can be triggered remotely, with public PoC/exploit disclosures and active exploitation reported by multi...

CVE-2025-14994

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

CVE-2025-14994 Tenda FH1201/FH1206 HTTP Request webtypelibrary strcat stack-based overflow

A flaw has been found in Tenda FH1201 and FH1206 1.2.0.14408/1.2.0.88155. This impacts the function strcat of the file /goform/webtypelibrary of the component HTTP Request Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack is possible to be carried...

CVE-2025-14994

The CVE-2025-14994 affects Tenda FH1201 and FH1206 routers (versions 1.2.0.14(408) and 1.2.0.8(8155)) in the HTTP Request Handler’s /goform/webtypelibrary. The vulnerability is a stack-based buffer overflow in the strcat usage manipulating the webSiteId argument, potentially allowing remote code ...

EUVD-2025-204665

A vulnerability was detected in Tenda AC18 15.03.05.05. This affects the function sprintf of the file /goform/SetDlnaCfg of the component HTTP Request Handler. The manipulation of the argument scanList results in stack-based buffer overflow. The attack can be executed remotely. The exploit is now...

CVE-2025-14993 Tenda AC18 HTTP Request SetDlnaCfg sprintf stack-based overflow

A vulnerability was detected in Tenda AC18 15.03.05.05. This affects the function sprintf of the file /goform/SetDlnaCfg of the component HTTP Request Handler. The manipulation of the argument scanList results in stack-based buffer overflow. The attack can be executed remotely. The exploit is now...

CVE-2025-14993

Mode C: The CVE-2025-14993 affects Tenda AC18 v15.03.05.05 in the HTTP Request Handler’s SetDlnaCfg, where improper handling of the scanList argument in sprintf causes a stack-based buffer overflow. This vulnerability is exploitable remotely, and multiple sources indicate a public exploit exists....

CVE-2025-14992

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. Remote exploitation of the...

CVE-2025-14992 Tenda AC18 HTTP Request GetParentControlInfo strcpy stack-based overflow

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. Remote exploitation of the...

CVE-2025-14992

CVE-2025-14992 affects Tenda AC18 firmware 15.03.05.05. The vulnerability is a stack-based overflow in the HTTP Request Handler’s GetParentControlInfo, caused by unsafe handling of the mac argument in strcpy. Remote exploitation is possible and exploits have been publicly disclosed. Public source...

OSV-2025-1001 Dynamic-stack-buffer-overflow in _ox_err_set_with_location

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=470447384 Crash type: Dynamic-stack-buffer-overflow READ 1 Crash state: oxerrsetwithlocation readtext readelement...

Tenda AC18 安全漏洞

Tenda AC18 is a router from Tenda China. A security vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an improper handling of the parameter mac in the strcpy function of the file /goform/GetParentControlInfo in the component HTTP Request Handler, which may result in a...

Tenda FH1206和Tenda FH1201 安全漏洞

The Tenda FH1206 and Tenda FH1201 are both wireless routers from Tenda China. A security vulnerability exists in the Tenda FH1206 and Tenda FH1201 versions 1.2.0.14408 and 1.2.0.88155, which originates from the handling of the parameter webSiteId by the strcat function in the file...