CVE-2025-6150 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

June 16, 2025

CVE ID : CVE-2025-6150

Published : June 17, 2025, 1:15 a.m. | 25 minutes ago

Description : A vulnerability classified as critical was found in TOTOLINK X15 1.0.0-B20230714.1105. Affected by this vulnerability is an unknown functionality of the file /boafrm/formMultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-27587 – OpenSSL PowerPC Minerva Timing Attack

Next Article CVE-2025-6151 – TP-Link TL-WR940N Buffer Overflow Vulnerability

Highlights

CVE-2025-48990 – NeKernal Heap Overflow

June 2, 2025

CVE ID : CVE-2025-48990

Published : June 2, 2025, 12:15 p.m. | 2 hours, 56 minutes ago

Description : NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in `rt_copy_memory`, which unconditionally wrote a null terminator at `dst[len]`. When `len` equals the size of the destination buffer (256 bytes), that extra `”` write overruns the buffer by one byte. To avoid breaking existing callers or changing the public API, the patch in commit fb7b7f658327f659c6a6da1af151cb389c2ca4ee takes a minimal approach: it simply removes the overflow-causing line without adding bounds checks or altering the function signature.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

IBM launches new integration to help unify AI security and governance

Meet Accessible UX Research, A Brand-New Smashing Book

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

Sam Altman claims Meta is trying to poach OpenAI staffers with $100 million bonuses, but “none of our best people have decided to take them up on that”

Why Inclusive Design Solutions Are important for Accessibility

Why Inclusive Design Solutions Are important for Accessibility

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

CVE-2025-6150 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Critical Auth Bypass Vulnerability (CVE-2025-51381) Found in KAON KCM3100 Gateways

The AI video tool behind the most viral social trends right now

DebLight OS is a lightweight and fast Linux distribution

ICANN computers compromised by hackers

Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers

CVE-2025-48990 – NeKernal Heap Overflow

CVE-2025-2300 – Hitachi Ops Center Common Services Information Exposure

T* and LV-Haystack: A Spatially-Guided Temporal Search Framework for Efficient Long-Form Video Understanding

CVE-2025-3986 – Apache Apereo CAS Regular Expression Inefficient Complexity Remote Vulnerability

CVE-2025-6150 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Related Posts