CVE-2025-6334

The CVE-2025-6334 entry applies to D-Link DIR-867 (firmware 1.0). The flaw is a stack-based buffer overflow in the Query String Handler caused by improper handling of strncpy. This remote vulnerability can be exploited without user interaction and is rated HIGH impact on confidentiality, integrit...

CVE-2025-6334 D-Link DIR-867 Query String strncpy stack-based overflow

A vulnerability has been found in D-Link DIR-867 1.0 and classified as critical. This vulnerability affects the function strncpy of the component Query String Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to th...

CVE-2025-6334 D-Link DIR-867 Query String strncpy stack-based overflow

A vulnerability has been found in D-Link DIR-867 1.0 and classified as critical. This vulnerability affects the function strncpy of the component Query String Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to th...

CVE-2025-6328

A vulnerability was found in D-Link DIR-815 1.01. It has been declared as critical. This vulnerability affects the function sub403794 of the file hedwig.cgi. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public a...

CVE-2025-6328 D-Link DIR-815 hedwig.cgi sub_403794 stack-based overflow

A vulnerability was found in D-Link DIR-815 1.01. It has been declared as critical. This vulnerability affects the function sub403794 of the file hedwig.cgi. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public a...

CVE-2025-6328

CVE-2025-6328 - D-Link DIR-815 (firmware 1.01) vulnerable component: the function sub_403794 in hedwig.cgi, which causes a stack-based buffer overflow. A remote attacker can exploit this (exploit publicly disclosed). Affected product is the D-Link DIR-815; impact includes potential remote code ex...

CVE-2025-6302 TOTOLINK EX1200T cstecgi.cgi setStaticDhcpConfig stack-based overflow

A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232B20210713. Affected is the function setStaticDhcpConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument Comment leads to stack-based buffer overflow. It is possible to launch the attack...

CVE-2025-6302

CVE-2025-6302 affects TOTOLINK EX1200T (4.1.2cu.5232_B20210713). The vulnerable element is setStaticDhcpConfig in /cgi-bin/cstecgi.cgi, where manipulating the Comment argument causes a stack-based buffer overflow. The impact is remote exploitation with a disclosed exploit; several sources corrobo...

CVE-2025-6291

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed t...

CVE-2025-6292

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6292 D-Link DIR-825 HTTP POST Request sub_4091AC stack-based overflow

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6292 D-Link DIR-825 HTTP POST Request sub_4091AC stack-based overflow

A vulnerability has been found in D-Link DIR-825 2.03 and classified as critical. This vulnerability affects the function sub4091AC of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-6292

CVE-2025-6292 affects D-Link DIR-825, specifically version 2.03. The issue stems from the HTTP POST Request Handler’s sub_4091AC function, which can be triggered remotely to cause a stack-based buffer overflow. Public exploitation is indicated, and the vulnerability targets devices no longer supp...

CVE-2025-6291 D-Link DIR-825 HTTP POST Request do_file stack-based overflow

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed t...

CVE-2025-6291

CVE-2025-6291 concerns the D-Link DIR-825 router (version 2.03) where the HTTP POST Request Handler’s function do_file allows a stack-based buffer overflow. Multiple sources (CNVD/CNNVD/NVD, CVE lists) describe a remote, unauthenticated or low-privilege path to exploit that can execute arbitrary ...

CVE-2025-6291 D-Link DIR-825 HTTP POST Request do_file stack-based overflow

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2.03. This affects the function dofile of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed t...

PT-2025-27045

Name of the Vulnerable Software and Affected Versions: Linksys WRT1900ACS, EA7200, EA7450, and EA7500 versions up to 20250619 Description: A critical vulnerability exists in Linksys routers due to a stack-based buffer overflow. The issue is located in the SetDefaultConnectionService function with...

PT-2025-26270 · Totolink · Totolink Ex1200T

Name of the Vulnerable Software and Affected Versions: TOTOLINK EX1200T version 4.1.2cu.5232 B20210713 Description: A critical vulnerability was found in the TOTOLINK EX1200T, affecting the setStaticDhcpConfig function of the file /cgi-bin/cstecgi.cgi. The manipulation of the Comment argument lea...

CVE-2025-6115

A vulnerability was found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this issue is the function formmacfilter. The manipulation of the argument machostname%d/schedname%d leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclos...

CVE-2025-6114

A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. Affected by this vulnerability is the function formportforwarding of the file /goform/formportforwarding. The manipulation of the argument ingressname%d/schedname%d/name%d leads to stack-based buffer overflow. T...