CVE-2025-5736 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

June 6, 2025

CVE ID : CVE-2025-5736

Published : June 6, 2025, 8:15 a.m. | 2 hours, 29 minutes ago

Description : A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been classified as critical. Affected is an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5737 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Next Article CVE-2025-3321 – Apache Server Unauthenticated Local Privilege Escalation Vulnerability

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

5 things we didn’t get from the Xbox Games Showcase, because Xbox obviously hates me personally

Minecraft Vibrant Visuals finally has a release date and it’s dropping with the Happy Ghasts

QAQ-QQ-AI-QUEST

QAQ-QQ-AI-QUEST

JS Dark Arts: Abusing prototypes and the Result type

Helpful Git Aliases To Maximize Developer Productivity

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

5 things we didn’t get from the Xbox Games Showcase, because Xbox obviously hates me personally

CVE-2025-5736 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

More From Our Main Blog: The Good, the Bad and the Ugly in Cybersecurity – Week 24

SafeLine WAF: Open Source Web Application Firewall with Zero-Day Detection and Bot Protection

CVE-2025-3511 – Mitsubishi Electric Corporation CC-Link IE TSN Denial of Service Remote Buffer Overflow

CVE-2025-4988 – “3DEXPERIENCE Stored XSS”

CVE-2025-5893 – Honding Technology Smart Parking Management System Sensitive Information Exposure

How SSL Misconfigurations Impact Your Attack Surface

CVE-2025-27563 – OpenHarmony Permission Leak

Here are two key changes announced for next-nen Windows 11’s hardware drivers

ruby-align is Baseline Newly available

CVE-2025-5736 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow

Related Posts