The vulnerability of the formRoute() function in the TOTOLINK A3002R router’s software allows a hacker to execute arbitrary code.

The vulnerability of the formRoute function in the TOTOLINK A3002R router’s microprogramming system lies in the reading of data beyond the buffer boundaries in memory during the processing of the subnet parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by...

CVE-2025-6487

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been rated as critical. This issue affects the function formRoute of the file /boafrm/formRoute. The manipulation of the argument subnet leads to stack-based buffer overflow. The attack may be initiated remotely. The exploi...

Open5GS 安全漏洞

Open5GS is Open5GS open source an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. Open5GS suffers from a buffer overflow vulnerability that is caused by incorrect bounds checking in the ogspfcpsubnetadd function in the pfcp library. No detailed...

CVE-2022-28896

A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link DIR882 DIR882A1FW130B06 allows attackers to escalate privileges to root via a crafted payload...

Vulnerability of the cgidhcpsCfgSet() function (Program:/bin/httpd) in Tenda W12 and i24 router microsoftware, allowing a hacker to execute arbitrary code

The vulnerability of the cgidhcpsCfgSet function Program:/bin/httpd in the Tenda W12 and i24 router microprogramming systems is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code when processing parameters such as startIp, endI...

CVE-2013-2788

The DNP3 Slave service in SUBNET Solutions SubSTATION Server 2.7.0033 and 2.8.0106 allows remote attackers to cause a denial of service unhandled exception and process crash via unspecified vectors...

kernel: iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()

In the Linux kernel, the following vulnerability has been resolved: iscsiibft: Fix UBSAN shift-out-of-bounds warning in ibftattrshownic When performing an iSCSI boot using IPv6, iscsistart still reads the /sys/firmware/ibft/ethernetX/subnet-mask entry. Since the IPv6 prefix length is 64, this...

Bohua NetDragon Firewall 注入漏洞

Bohua NetDragon Firewall is a firewall from Bohua. An injection vulnerability exists in Bohua NetDragon Firewall version 1.0, which stems from improper handling of the parameter subnet in the file /systemstatus/ipstatus.php, which could lead to command injection...

CVE-2025-46635

An issue was discovered on Tenda RX2 Pro 16.03.30.14 devices. Improper network isolation between the guest Wi-Fi network and other network interfaces on the router allows an attacker who is authenticated to the guest Wi-Fi to access resources on the router and/or resources and devices on other...

RHEL 6 : openstack-neutron (RHSA-2014:0899)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:0899 advisory. The openstack-neutron packages provide Openstack Networking neutron, the virtual network service. OpenStack Networking neutron is a pluggabl...

CVE-2025-31354

Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters...

CVE-2025-31935

Subnet Solutions PowerSYSTEM Center is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the API may trigger an exception, resulting in a denial-of-service condition...

CVE-2025-31354

Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters...

CVE-2025-31935 Subnet Solutions PowerSYSTEM Center Deserialization of Untrusted Data

Subnet Solutions PowerSYSTEM Center is affected by a mishandling of exceptional conditions vulnerability. Crafted data that is passed to the API may trigger an exception, resulting in a denial-of-service condition...

CVE-2025-31935

CVE-2025-31935 concerns Subnet Solutions PowerSYSTEM Center. The issue is described as a mishandling of exceptional conditions: crafted data passed to the API can trigger an exception, resulting in a denial-of-service condition. CVSS metrics indicate a Local attack vector with Low attack complexi...

CVE-2025-31354 Subnet Solutions PowerSYSTEM Center Out-of-Bounds Read

Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters...

CVE-2025-31354

CVE-2025-31354 affects Subnet Solutions PowerSYSTEM Center’s SMTPS notification service. Importing an EC certificate with crafted F2m parameters can trigger excessive CPU consumption while evaluating curve parameters, constituting a denial-of-service condition. The available documents do not spec...

CVE-2025-31354 Subnet Solutions PowerSYSTEM Center Out-of-Bounds Read

Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters...

Subnet Solutions PowerSYSTEM Center 缓冲区错误漏洞

Subnet Solutions PowerSYSTEM Center is a power solution from Subnet Solutions, Inc. A buffer error vulnerability exists in Subnet Solutions PowerSYSTEM Center that stems from the import of specially crafted EC certificates that could lead to excessive CPU consumption...

Subnet Solutions PowerSYSTEM Center 代码问题漏洞

Subnet Solutions PowerSYSTEM Center is a power solution from Subnet Solutions, Inc. A code issue vulnerability exists in Subnet Solutions PowerSYSTEM Center that stems from mishandling of an exception condition could result in a denial of service...