CVE-2025-5735 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

June 6, 2025

CVE ID : CVE-2025-5735

Published : June 6, 2025, 8:15 a.m. | 1 hour, 55 minutes ago

Description : A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105 and classified as critical. This issue affects some unknown processing of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5732 – Traffic Offense Reporting System Cross-Site Request Forgery Vulnerability

Next Article CVE-2025-5734 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

CodeSOD: Classic WTF: When it’s OK to GOTO

Overture Maps launches GERS, a system of unique IDs for global geospatial entities

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Generate awesome open graph images with Open Graphy

Generate awesome open graph images with Open Graphy

Defining a Dedicated Query Builder in Laravel 12 With PHP Attributes

pxlrbt/filament-activity-log

Linux Jargon Buster: What are Secure Boot & Shim Files?

Linux Jargon Buster: What are Secure Boot & Shim Files?

Fldigi – modem program for most of the digital modes used by radio amateurs

Lwan is an experimental, scalable, high performance HTTP server

CVE-2025-5735 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

New TeamViewer Vulnerability Puts Windows Systems at Risk of Privilege Escalation

Citrix Bleed 2 Flaw Enables Token Theft; SAP GUI Flaws Risk Sensitive Data Exposure

CoreChess – chess GUI for chess engines

CVE-2025-32964 – ManageWiki Extension Privilege Escalation Vulnerability

CVE-2025-5289 – WordPress 3D FlipBook Stored Cross-Site Scripting Vulnerability

Researchers at Physical Intelligence Introduce π-0.5: A New AI Framework for Real-Time Adaptive Intelligence in Physical Systems

Bare – QuikJS Based JavaScript Runtime

CVE-2025-49786 – Apache HTTP Server Unvalidated User Input

Customize Logseq With Themes and Plugins

DuckDB is an in-process SQL OLAP database management system

CVE-2025-5735 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Related Posts