13260 matches found
CVE-2025-7417 Tenda O3V2 httpd setPingInfo fromNetToolGet stack-based overflow
A vulnerability has been found in Tenda O3V2 1.0.0.123880 and classified as critical. Affected by this vulnerability is the function fromNetToolGet of the file /goform/setPingInfo of the component httpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be...
CVE-2025-7417 Tenda O3V2 httpd setPingInfo fromNetToolGet stack-based overflow
A vulnerability has been found in Tenda O3V2 1.0.0.123880 and classified as critical. Affected by this vulnerability is the function fromNetToolGet of the file /goform/setPingInfo of the component httpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be...
CVE-2025-7416
CVE-2025-7416 affects Tenda O3V2 router (httpd: /goform/setSysTimeInfo, fromSysToolTime). The Time parameter is vulnerable to a stack-based overflow, enabling remote exploitation. Publicly disclosed exploit noted in sources; impact can include arbitrary code execution or denial of service. Affect...
CVE-2025-7416 Tenda O3V2 httpd setSysTimeInfo fromSysToolTime stack-based overflow
A vulnerability, which was classified as critical, was found in Tenda O3V2 1.0.0.123880. Affected is the function fromSysToolTime of the file /goform/setSysTimeInfo of the component httpd. The manipulation of the argument Time leads to stack-based buffer overflow. It is possible to launch the...
CVE-2025-7194
A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file ipposition.asp of the component jhttpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launch...
PT-2025-29368 · Tenda · Tenda Fh1202
Name of the Vulnerable Software and Affected Versions: Tenda FH1202 version 1.2.0.14408 Description: A critical vulnerability exists in the Tenda FH1202. The issue affects the fromAdvSetWan function within the /goform/AdvSetWan file. Manipulation of the PPPOEPassword argument leads to a stack-bas...
CVE-2025-7206 D-Link DIR-825 httpd switch_language.cgi sub_410DDC stack-based overflow
A vulnerability, which was classified as critical, has been found in D-Link DIR-825 2.10. This issue affects the function sub410DDC of the file switchlanguage.cgi of the component httpd. The manipulation of the argument Language leads to stack-based buffer overflow. The attack may be initiated...
CVE-2025-7206
CVE-2025-7206 concerns D-Link DIR-825 firmware version 2.10. The issue resides in the httpd component, specifically the Language parameter handling in switch_language.cgi via the function sub_410DDC. A crafted Language value can cause a stack-based buffer overflow, leading to remote arbitrary cod...
CVE-2025-47120
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49527
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49528 Illustrator | Stack-based Buffer Overflow (CWE-121)
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49528 Illustrator | Stack-based Buffer Overflow (CWE-121)
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-7194
A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file ipposition.asp of the component jhttpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launch...
CVE-2025-7094
A vulnerability was found in Belkin F9K1122 1.00.33. It has been rated as critical. Affected by this issue is the function formBSSetSitesurvey of the file /goform/formBSSetSitesurvey of the component webs. The manipulation of the argument submit-url-ok leads to stack-based buffer overflow. The...
CVE-2025-7093
A vulnerability was found in Belkin F9K1122 1.00.33. It has been declared as critical. Affected by this vulnerability is the function formSetLanguage of the file /goform/formSetLanguage of the component webs. The manipulation of the argument webpage leads to stack-based buffer overflow. The attac...
CVE-2025-7194
CVE-2025-7194 affects D-Link DI-500WF (version 17.04.10A1T). The vulnerability resides in the jhttpd component’s file ip_position.asp where unvalidated input to the sprintf call leads to a stack-based buffer overflow. It is exploitable remotely over the network and an exploit has been publicly di...
CVE-2025-7194 D-Link DI-500WF jhttpd ip_position.asp sprintf stack-based overflow
A vulnerability was found in D-Link DI-500WF 17.04.10A1T. It has been declared as critical. Affected by this vulnerability is the function sprintf of the file ipposition.asp of the component jhttpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launch...
CVE-2025-7091
A vulnerability was found in Belkin F9K1122 1.00.33. It has been classified as critical. Affected is the function formWlanMP of the file /goform/formWlanMP of the component webs. The manipulation of the argument...
CVE-2025-7092
A vulnerability has been found in Belkin F9K1122 1.00.33 and classified as critical. This vulnerability affects the function formWlanSetupWPS of the file /goform/formWlanSetupWPS of the component webs. The manipulation of the argument wpsenroleepin/webpage leads to stack-based buffer overflow. Th...
CVE-2025-7089
A vulnerability was found in Belkin F9K1122 1.00.33 and classified as critical. This issue affects the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component webs. The manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack may be...