CVE-2025-3711 – “LCD KVM over IP Switch CL5708IM Stack-based Buffer Overflow Vulnerability”

May 9, 2025

CVE ID : CVE-2025-3711

Published : May 9, 2025, 4:16 a.m. | 2 hours, 25 minutes ago

Description : The LCD KVM over IP Switch CL5708IM has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3714 – “LCD KVM over IP Switch CL5708IM Stack-based Buffer Overflow Vulnerability”

Next Article CVE-2025-3710 – “KVM Over IP Switch CL5708IM Stack-based Buffer Overflow Vulnerability”

Highlights

Development

while controller isn’t working perfectly when testing for multiple users

November 15, 2024

I have designed a case to wait for specific model name in GET response and then POST data. It is tested and is working fine when only 1 user and 1 loop are set. When the specific model name is found, then proceed to deploy the model.
JSON Extractor
$..valid_model_list[?(@.model_name =~ /.*Model-Test-${variable}-${counter}-v1-8k/i)]

While Controller
${__jexl3(“${modelnameresult_matchNr}” != “1”,)}

However, when I ramp up the test to use 2 users and 2 loops. The result isn’t as per expectation.

Question 1: Why JMeter isn’t running the request in sequence when multiple users and loop are set?
How do I design it in a better way to avoid false-positives in results?
Question 2: The GET (TrainedModelsList) constant timer is set to 1 minute and expectation is that it continues running till the end of the test. It seems it just run to a certain period and stopped. What type of timer should be used in this case?
JMeter deployed these model successfully
Model-Test-2022-02-28T09:46:40784-0001-v1-8k
Model-Test-2022-02-28T09:46:42785-0002-v1-8k
Model-Test-2022-02-28T09:46:44784-0003-v1-8k
Model-Test-2022-02-28T09:46:46783-0004-v1-8k

JMeter start deploy the model and fail although these models are not yet found:
Model-Test-2022-02-28T10:02:51745-0006-v1-8k
Model-Test-2022-02-28T10:18:18831-0007-v1-8k
Model-Test-2022-02-28T10:34:21111-0008-v1-8k
Model-Test-2022-02-28T10:50:24376-0009-v1-8k

Updated with view result notes where the problem occurred at second loop:

TensorOpera AI Releases Fox-1: A Series of Small Language Models (SLMs) that Includes Fox-1-1.6B and Fox-1-1.6B-Instruct-v0.1

November 12, 2024

Google DeepMindâ€™s SIMA Project Enhances Agent Performance in Dynamic 3D Environments Across Various Platforms

April 19, 2024

Mastering Webflow Shortcuts: The Ultimate Guide for Faster Builds

May 1, 2025

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Microsoft aims to be “carbon negative” by 2030, with 3 million carbon removal credits in its backyard of Washington

Sam Altman doesn’t want his son to have an AI “bestie” — as Microsoft plans to turn Copilot into an AI friend and companion

ChatGPT downplays AI’s threat to humanity despite an apparent “99.999999% probability” of inevitable doom

Surface Pro 12-inch vs. iPad Air M3: Which should you choose?

A customizable and accessible web component

A customizable and accessible web component

How Agile Helps You Improve Your Agility

Laravel Seeder Generator

Microsoft aims to be “carbon negative” by 2030, with 3 million carbon removal credits in its backyard of Washington

Microsoft aims to be “carbon negative” by 2030, with 3 million carbon removal credits in its backyard of Washington

Sam Altman doesn’t want his son to have an AI “bestie” — as Microsoft plans to turn Copilot into an AI friend and companion

ChatGPT downplays AI’s threat to humanity despite an apparent “99.999999% probability” of inevitable doom

CVE-2025-3711 – “LCD KVM over IP Switch CL5708IM Stack-based Buffer Overflow Vulnerability”

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-47858 – Apache HTTP Server Cross-Site Request Forgery

CVE-2025-46328 – Snowflake-Connector-Nodejs TOCTOU Race Condition Local File Write Vulnerability

gdcalc – financial, scientific, statistical and programming calculator

Survey reveals the usage and perception of AI in the overall workforce, beyond just the realm of software development

Laravel Unique

while controller isn’t working perfectly when testing for multiple users

TensorOpera AI Releases Fox-1: A Series of Small Language Models (SLMs) that Includes Fox-1-1.6B and Fox-1-1.6B-Instruct-v0.1

Google DeepMindâ€™s SIMA Project Enhances Agent Performance in Dynamic 3D Environments Across Various Platforms

Mastering Webflow Shortcuts: The Ultimate Guide for Faster Builds

CVE-2025-3711 – “LCD KVM over IP Switch CL5708IM Stack-based Buffer Overflow Vulnerability”

Related Posts