Fuji Electric Smart Editor TL5 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Smart Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2025-6141

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of the file tinfo/parseentry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to...

CVE-2025-6141

CVE-2025-6141 affects GNU ncurses up to 6.5-20250322, with a stack-based buffer overflow in the function postprocess_termcap of tinfo/parse_entry.c . Exploitation is local (no remote vector described). Affected distributions in the connected advisories indicate EulerOS releases and OpenVAS/Nessus...

CVE-2025-6121

A vulnerability, which was classified as critical, has been found in D-Link DIR-632 FW103B08. Affected by this issue is the function getpurecontent of the component HTTP POST Request Handler. The manipulation of the argument Content-Length leads to stack-based buffer overflow. The attack may be...

CVE-2025-6114

A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this vulnerability is the function formportforwarding of the file /goform/formportforwarding. The manipulation of the argument ingressname%d/schedname%d/name%d leads to stack-based buffer overflow. T...

CVE-2025-6115

The CVE-2025-6115 entry relates to the D-Link DIR-619L router (firmware 2.06B01). A stack-based buffer overflow exists in the form_macfilter function triggered by manipulating mac_hostname_%d/sched_name_%d, allowing remote exploitation. Multiple sources confirm remote access with publicly disclos...

CVE-2025-6111

A vulnerability classified as critical was found in Tenda FH1205 2.0.0.7775. This vulnerability affects the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has bee...

CVE-2025-6110

A vulnerability classified as critical has been found in Tenda FH1201 1.2.0.14408. This affects an unknown part of the file /goform/SafeMacFilter. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-6111 Tenda FH1205 VirtualSer fromVirtualSer stack-based overflow

A vulnerability classified as critical was found in Tenda FH1205 2.0.0.7775. This vulnerability affects the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has bee...

CVE-2025-6110 Tenda FH1201 SafeMacFilter stack-based overflow

A vulnerability classified as critical has been found in Tenda FH1201 1.2.0.14408. This affects an unknown part of the file /goform/SafeMacFilter. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

PT-2025-25535 · D Link · Dir-619L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-619L version 2.06B01 Description: A critical vulnerability has been found in the function form portforwarding of the file /goform/form portforwarding. The manipulation of the argument ingress name %d/sched name %d/name %d leads to ...

PT-2025-25527 · Tenda · Tenda Fh1205

Name of the Vulnerable Software and Affected Versions: Tenda FH1205 version 2.0.0.7775 Description: A critical vulnerability was found in the Tenda FH1205, affecting the fromVirtualSer function of the file /goform/VirtualSer. The manipulation of the argument page leads to a stack-based buffer...

Asus Armoury Crate AsIO3.sys stack-based buffer overflow vulnerability

Talos Vulnerability Report TALOS-2025-2144 Asus Armoury Crate AsIO3.sys stack-based buffer overflow vulnerability June 16, 2025 CVE Number CVE-2025-1533 SUMMARY A stack-based buffer overflow vulnerability exists in the AsIO3.sys kernel driver of Asus Armoury Crate 5.9.13.0. A specially crafted I/...

PT-2025-25525 · Tenda · Tenda Fh1201

Name of the Vulnerable Software and Affected Versions: Tenda FH1201 version 1.2.0.14408 Description: A critical vulnerability has been found in Tenda FH1201. This affects an unknown part of the file /goform/SafeMacFilter. The manipulation of the page argument leads to a stack-based buffer overflo...

TencentOS Server 3: libyang (TSSA-2022:0076)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0076 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 3: glibc (TSSA-2024:0233)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0233 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2025-24922

A stack-based buffer overflow vulnerability exists in the securebioidentify functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36. A specially crafted malicious cvobject can lead to a arbitrary code execution. An attacker can issue an API call to...

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a stack-based buffer overflow in libxml2 [CVE-2025-24928]

Summary IBM Watson Speech Services Cartridge is vulnerable to a stack-based buffer overflow in libxml2, caused by a flaw in xmlSnprintfElements in valid.c CVE-2025-24928. libxml2 is used as part of our speech utilities. This vulnerabilitiy has been addressed. Please read the details for remediati...

PT-2025-26305 · D Link · D-Link Dir-867

Name of the Vulnerable Software and Affected Versions: D-Link DIR-867 version 1.0 Description: A critical vulnerability has been found in the function strncpy of the component Query String Handler, leading to a stack-based buffer overflow. The attack can be initiated remotely. This vulnerability...

CVE-2025-5969

A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN00425fd8 of the file /biurlgrou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched...