CVE-2025-7673 – Zyxel zhttpd Web Server Buffer Overflow Vulnerability

July 16, 2025

CVE ID : CVE-2025-7673

Published : July 16, 2025, 7:15 a.m. | 10 hours, 59 minutes ago

Description : A buffer overflow vulnerability in the URL parser of the zhttpd web server in Zyxel VMG8825-T50K firmware versions prior to V5.50(ABOM.5)C0 could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and potentially execute arbitrary code by sending a specially crafted HTTP request.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-54010 – Shahjahan Jewel FluentSnippets CSRF Vulnerability

Next Article Deploy conversational agents with Vonage and Amazon Nova Sonic

Highlights

CVE-2025-5130 – Tmall Demo Unrestricted File Upload Vulnerability

May 24, 2025

CVE ID : CVE-2025-5130

Published : May 24, 2025, 8:15 p.m. | 39 minutes ago

Description : A vulnerability was found in Tmall Demo up to 20250505. It has been classified as critical. This affects the function uploadProductImage of the file tmall/admin/uploadProductImage. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Prompting Is A Design Act: How To Brief, Guide And Iterate With AI

Best React.js Development Services in 2025: Features, Benefits & What to Look For

August 2025: AI updates from the past month

This 3-in-1 charger has a retractable superpower that’s a must for travel

How a legacy hardware company reinvented itself in the AI age

The 13+ best Walmart Labor Day deals 2025: Sales on Apple, Samsung, LG, and more

You can save up to $700 on my favorite Bluetti power stations for Labor Day

Call for Speakers – JS Conf Armenia 2025

Call for Speakers – JS Conf Armenia 2025

Streamlining Application Automation with Laravel’s Task Scheduler

A Fluent Path Builder for PHP and Laravel

Windows 11 KB5064081 24H2 adds taskbar clock, direct download links for .msu offline installer

Windows 11 KB5064081 24H2 adds taskbar clock, direct download links for .msu offline installer

My Family Cinema not Working? 12 Quick Fixes

Super-linter – collection of linters and code analyzers

CVE-2025-7673 – Zyxel zhttpd Web Server Buffer Overflow Vulnerability

WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices

Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

Fable May Not Launch in 2026 After All, Xbox Insider Hints at 2027 Release

Essential Cybersecurity YouTube Channels for Technical Teams

CVE-2025-6330 – PHPGurukul Directory Management System SQL Injection Vulnerability

Asus adviseert fabrieksreset voor verwijderen van SSH-backdoor

CVE-2025-5130 – Tmall Demo Unrestricted File Upload Vulnerability

CVE-2025-4857 – WordPress Newsletters Plugin Local File Inclusion Vulnerability

CVE-2015-20112 – Fortinet SSL/TLS CTR Stream Collision Vulnerability

Your Agentforce Readiness Assessment

CVE-2025-7673 – Zyxel zhttpd Web Server Buffer Overflow Vulnerability

Related Posts