CVE-2025-5738 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

June 6, 2025

CVE ID : CVE-2025-5738

Published : June 6, 2025, 9:15 a.m. | 1 hour, 29 minutes ago

Description : A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been rated as critical. Affected by this issue is some unknown functionality of the file /boafrm/formStats of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3365 – Apache File Path Traversal Vulnerability

Next Article CVE-2025-5737 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

This could be the versatile laptop accessory I’ve been waiting for — Here’s why it stands out from other portable monitors

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Everybody’s gone lintin’

QAQ-QQ-AI-QUEST

OneDrive for Mac will soon give you more flexible storage options

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

CVE-2025-5738 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

Mitel OpenScape Flaw (CVE-2025-23092): High-Severity Path Traversal Allows Admin RCE

Microsoft Expands AI Office in London, “We’re Hiring,” CEO Announces

CVE-2025-5706 – PHPGurukul Human Metapneumovirus Testing Management System SQL Injection Vulnerability

Anthropic researchers say next-generation AI models will reduce humans to “meat robots” in a spectrum of crazy futures

October CMS: A Modern CMS for Developers and Creators

DOOM: The Dark Ages release date — Launch time, Early Access, and when it comes out in your time zone

CVE-2025-37990 – “Broadcom brcm80211 WiFi Linux Kernel Uninitialized Variable Use”

Atla AI Introduces the Atla MCP Server: A Local Interface of Purpose-Built LLM Judges via Model Context Protocol (MCP)

CVE-2025-4487 – iSourcecode Gym Management System SQL Injection Vulnerability

CVE-2025-5738 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Related Posts