CVE-2025-5978

CVE-2025-5978 affects Tenda FH1202, version 1.2.0.14. The vulnerability is in the function fromVirtualSer of the file /goform/VirtualSer. Manipulating the argument page causes a stack-based buffer overflow, enabling remote code execution. Multiple connected sources corroborate the issue and descr...

CVE-2025-5969

The CVE-2025-5969 entry concerns D-Link DIR-632 FW103B08. Affected is the HTTP POST Request Handler, specifically the FUN_00425fd8 function in file /biurl_grou, where input length validation leads to a stack-based buffer overflow. The vulnerability can be exploited remotely and, per sources, affe...

CVE-2025-5969 D-Link DIR-632 HTTP POST Request biurl_grou FUN_00425fd8 stack-based overflow

A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN00425fd8 of the file /biurlgrou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-5969 D-Link DIR-632 HTTP POST Request biurl_grou FUN_00425fd8 stack-based overflow

A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN00425fd8 of the file /biurlgrou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-5934

Netgear EX3700 devices with firmware up to 1.0.0.88 are affected by a stack-based buffer overflow in function sub_41619C in /mtd. The vulnerability can be exploited remotely and the exploit has been disclosed publicly. A fix exists: upgrade to version 1.0.0.98. This issue affects products that ar...

CVE-2025-5934 Netgear EX3700 mtd sub_41619C stack-based overflow

A vulnerability was found in Netgear EX3700 up to 1.0.0.88. It has been classified as critical. Affected is the function sub41619C of the file /mtd. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...

CVE-2025-5912 D-Link DIR-632 HTTP POST Request do_file stack-based overflow

A vulnerability was found in D-Link DIR-632 FW103B08. It has been declared as critical. This vulnerability affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been...

CVE-2025-5912 D-Link DIR-632 HTTP POST Request do_file stack-based overflow

A vulnerability was found in D-Link DIR-632 FW103B08. It has been declared as critical. This vulnerability affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been...

CVE-2025-5912

The CVE-2025-5912 entry concerns D-Link DIR-632 with firmware FW103B08. A stack-based buffer overflow exists in the HTTP POST Request Handler’s do_file function. The vulnerability is exploitable remotely and affects a product that is no longer supported. Multiple connected sources provide concret...

CVE-2025-5863

CVE-2025-5863 – Tenda AC5 formSetRebootTimer buffer overflow . Affected device: Tenda AC5 (firmware 15.03.06.47). The flaw is in the function /goform/SetRebootTimer, where manipulating the rebootTime argument triggers a stack-based buffer overflow. Impact: remote code execution with high/critical...

CVE-2025-5863 Tenda AC5 SetRebootTimer formSetRebootTimer stack-based overflow

A vulnerability was found in Tenda AC5 15.03.06.47. It has been classified as critical. Affected is the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to launch the attack remotely. T...

CVE-2025-5855 Tenda AC6 SetRebootTimer formSetRebootTimer stack-based overflow

A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely...

CVE-2025-5855

The CVE-2025-5855 issue affects Tenda AC6, version 15.03.05.16, in the /goform/SetRebootTimer endpoint specifically the formSetRebootTimer function. Exploitation arises from feeding rebootTime, causing a stack-based buffer overflow. It is exploitable remotely and the exploit has been publicly dis...

CVE-2025-5853 Tenda AC6 SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-5853 Tenda AC6 SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability classified as critical was found in Tenda AC6 15.03.05.16. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg. The manipulation of the argument remoteIp leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-5849 Tenda AC15 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been classified as critical. This affects the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based buffer...

CVE-2025-5849

CVE-2025-5849 describes a stack-based buffer overflow in Tenda AC15 firmware version 15.03.05.19_multi. The vulnerability affects the HTTP POST request handler function, specifically the /goform/SetRemoteWebCfg field formSetSafeWanWebMan, caused by improper handling of the remoteIp argument. Remo...

CVE-2025-5849 Tenda AC15 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability was found in Tenda AC15 15.03.05.19multi. It has been classified as critical. This affects the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based buffer...

CVE-2025-5847 Tenda AC9 HTTP POST Request SetRemoteWebCfg formSetSafeWanWebMan stack-based overflow

A vulnerability has been found in Tenda AC9 15.03.02.13 and classified as critical. Affected by this vulnerability is the function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg of the component HTTP POST Request Handler. The manipulation of the argument remoteIp leads to stack-based...

CVE-2025-5847

CVE-2025-5847 affects Tenda AC9 firmware 15.03.02.13. The vulnerability is in the HTTP POST Request Handler function formSetSafeWanWebMan of the file /goform/SetRemoteWebCfg; processing the remoteIp argument can trigger a stack-based buffer overflow. This allows a remote attacker to potentially e...