CVE-2025-6091 – H3C GR-3000AX Buffer Overflow Vulnerability

June 15, 2025

CVE ID : CVE-2025-6091

Published : June 15, 2025, 5:15 p.m. | 8 hours, 14 minutes ago

Description : A vulnerability was found in H3C GR-3000AX V100R007L50. It has been classified as critical. Affected is the function UpdateWanParamsMulti/UpdateIpv6Params of the file /routing/goform/aspForm. The manipulation of the argument param leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor confirms the existence of this issue. Because they assess the risk as low, they do not have immediate plans for remediation.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5990 – Crafty Controller Stored XSS Vulnerability

Next Article CVE-2024-25573 – PingFederate Stored XSS Vulnerability

Highlights

CVE-2025-4547 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

May 11, 2025

CVE ID : CVE-2025-4547

Published : May 11, 2025, 9:15 p.m. | 3 hours, 15 minutes ago

Description : A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Add User Page. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Multiple parameters might be affected.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-6091 – H3C GR-3000AX Buffer Overflow Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

APT Hackers Exploited Windows WebDAV 0-Day RCE Vulnerability in the Wild to Deploy Malware

CVE-2025-8480 – Alpine iLX-507 Tidal Music Streaming Command Injection Remote Code Execution

NVIDIA’s most expensive laptops are a terrible value — Here’s what you should buy instead

cgames – collection of three ncurses games

CVE-2025-4547 – SourceCodester Web-based Pharmacy Product Management System Cross-Site Scripting Vulnerability

DavMail is a POP/IMAP/SMTP/Caldav/Carddav/LDAP exchange gateway

CVE-2025-4147 – Netgear EX6200 Remote Buffer Overflow Vulnerability

Distribution Release: Security Onion 2.4.160

CVE-2025-6091 – H3C GR-3000AX Buffer Overflow Vulnerability

Related Posts