CVE-2025-7792

CVE-2025-7792 affects Tenda FH451 (version 1.0.0.9). The vulnerability resides in the formSafeEmailFilter function in /goform/SafeEmailFilter, where manipulation of the page argument leads to a stack-based buffer overflow. It can be triggered remotely and the exploit has been publicly disclosed. ...

CVE-2025-7792 Tenda FH451 SafeEmailFilter formSafeEmailFilter stack-based overflow

A vulnerability was found in Tenda FH451 1.0.0.9. It has been rated as critical. This issue affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit h...

CVE-2025-7792 Tenda FH451 SafeEmailFilter formSafeEmailFilter stack-based overflow

A vulnerability was found in Tenda FH451 1.0.0.9. It has been rated as critical. This issue affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit h...

CVE-2025-7790

The CVE-2025-7790 entry concerns the D-Link DI-8100 router, firmware 16.07.26A1. A stack-based buffer overflow exists in the HTTP Request Handler, specifically in the /menu_nat.asp/file handling of arguments out_addr/in_addr/out_port/proto, which can be triggered remotely. Public exploits have be...

CVE-2025-7790 D-Link DI-8100 HTTP Request menu_nat.asp stack-based overflow

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. This affects an unknown part of the file /menunat.asp of the component HTTP Request Handler. The manipulation of the argument outaddr/inaddr/outport/proto leads to stack-based buffer overflow. It is possib...

PT-2025-30220 · Unknown +1 · Boa Web Server +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-513 version 1.0 Description: A critical vulnerability exists in the Boa Webserver component of the affected product. The sprintf function within the /goform/formLanSetupRouterSettings file is susceptible to a stack-based buffer...

PT-2025-30221 · Unknown +1 · Boa Web Server +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-513 version 1.10 Description: A critical vulnerability exists in the Boa Webserver component of the D-Link DIR-513. The sprintf function within the /goform/formSetWanNonLogin file is susceptible to a stack-based buffer overflow whe...

CVE-2025-7762

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1. This issue affects some unknown processing of the file /menunatmore.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotel...

CVE-2025-7762

CVE-2025-7762 affects D-Link DI-8100 (16.07.26A1). The flaw is in the HTTP Request Handler's /menu_nat_more.asp processing, where input length is not properly validated, causing a stack-based buffer overflow. It can be triggered remotely and the exploit has been publicly disclosed. Multiple sourc...

CVE-2025-7762 D-Link DI-8100 HTTP Request menu_nat_more.asp stack-based overflow

A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07.26A1. This issue affects some unknown processing of the file /menunatmore.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotel...

IBM WebSphere Application Server 9.x < 9.0.5.25 / Liberty 17.0.0.3 < 25.0.0.8 DoS (7239856)

The version of IBM WebSphere Application Server running on the remote host is affected by a DoS vulnerability as referenced in the 7239856 advisory. - IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service,...

CVE-2025-36097

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server to consume excessive memory resources...

CVE-2025-36097

CVE-2025-36097 affects IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7. The issue is a stack-based overflow in the server when processing specially crafted requests, leading to denial of service by consuming memory resources. The vulnerabili...

CVE-2025-36097 IBM WebSphere Application Server denial of service

IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 are vulnerable to a denial of service, caused by a stack-based overflow. An attacker can send a specially crafted request that cause the server to consume excessive memory resources...

CVE-2025-7603

A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been classified as critical. Affected is an unknown function of the file /jingx.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploi...

CVE-2025-7598

A vulnerability classified as critical was found in Tenda AX1803 1.0.0.1. Affected by this vulnerability is the function formSetWifiMacFilterCfg of the file /goform/setWifiFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack can be launched...

CVE-2025-7602

A vulnerability was found in D-Link DI-8100 16.07.26A1 and classified as critical. This issue affects some unknown processing of the file /arpsys.asp of the component HTTP Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

CLSA-2025-1752655171 libxml2: Fix of 3 CVEs

CVE-2025-49794: fix use-after-free issue triggered by processing certain elements in input XML file. - CVE-2025-49796: fix memory corruption issue triggered by processing certain sch:name elements in input XML file. - CVE-2025-6021: fix integer overflow in buffer size calculations to prevent...

CVE-2025-7550

A vulnerability was found in Tenda FH1201 1.2.0.14408. It has been classified as critical. Affected is the function fromGstDhcpSetSer of the file /goform/GstDhcpSetSer. The manipulation of the argument dips leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2025-7548

A vulnerability has been found in Tenda FH1201 1.2.0.14408 and classified as critical. This vulnerability affects the function formSafeEmailFilter of the file /goform/SafeEmailFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely...