CVE-2025-52081 – Netgear XR300 Stack-Based Buffer Overflow Vulnerability

July 15, 2025

CVE ID : CVE-2025-52081

Published : July 15, 2025, 4:15 p.m. | 19 minutes ago

Description : In Netgear XR300 V1.0.3.38_10.3.30, a stack-based buffer overflow vulnerability exists in the HTTPD service through the usb_device.cgi endpoint. The vulnerability occurs when processing POST requests containing the usb_folder parameter.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52082 – Netgear XR300 HTTPD Service Stack-Based Buffer Overflow

Next Article CVE-2025-52080 – Netgear XR300 HTTPD Service Stack-Based Buffer Overflow

Highlights

CVE-2025-49583 – XWiki Cross-Site Notification Vulnerability

June 13, 2025

CVE ID : CVE-2025-49583

Published : June 13, 2025, 5:15 p.m. | 51 minutes ago

Description : XWiki is a generic wiki platform. When a user without script right creates a document with an `XWiki.Notifications.Code.NotificationEmailRendererClass` object, and later an admin edits and saves that document, the email templates in this object will be used for notifications. No malicious code can be executed, though, as while these templates allow Velocity code, the existing generic analyzer already warns admins before editing Velocity code. The main impact would thus be to send spam, e.g., with phishing links to other users or to hide notifications about other attacks. Note that warnings before editing documents with dangerous properties have only been introduced in XWiki 15.9, before that version, this was a known issue and the advice was simply to be careful. This has been patched in XWiki 16.10.2, 16.4.7 and 15.10.16 by adding an analysis for the respective XClass properties.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Report: 71% of tech leaders won’t hire devs without AI skills

Slack’s AI search now works across an organization’s entire knowledge base

In-House vs Outsourcing for React.js Development: Understand What Is Best for Your Enterprise

Tiny Screens, Big Impact: The Forgotten Art Of Developing Web Apps For Feature Phones

Too many open browser tabs? This is still my favorite solution – and has been for years

This new browser won’t monetize your every move – how to try it

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

The details of TC39’s last meeting

The details of TC39’s last meeting

Reclaim Space: Delete Docker Orphan Layers

Notes Android App Using SQLite

KeySmith – SSH key management

KeySmith – SSH key management

Pokémon has partnered with one of the biggest PC gaming brands again, and you can actually buy these accessories — but do you even want to?

AMD’s budget Ryzen AI 5 330 processor will introduce a wave of ultra-affordable Copilot+ PCs with its mobile 50 TOPS NPU

CVE-2025-52081 – Netgear XR300 Stack-Based Buffer Overflow Vulnerability

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

CVE-2025-40625 – TCMAN GIM Unauthenticated File Upload RCE

‘Easily Exploitable’ Langflow Vulnerability Requires Immediate Patching

Millions of Windows XP disks secretly included Microsoft’s failed search assistant to keep pirates at bay — “Bob was actually more useful dead than alive”

Distribution Release: Ubuntu Unity 25.04

CVE-2025-49583 – XWiki Cross-Site Notification Vulnerability

Clair Obscur: Expedition 33 release date — Launch times and when it comes out in your time zone

.NET goes open source and cross-platform

Will “Vibe Coders” Take Our Dev Jobs?

CVE-2025-52081 – Netgear XR300 Stack-Based Buffer Overflow Vulnerability

Related Posts