CVE-2025-6399 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Critical Vulnerability

June 21, 2025

CVE ID : CVE-2025-6399

Published : June 21, 2025, 4:15 a.m. | 2 hours ago

Description : A vulnerability, which was classified as critical, was found in TOTOLINK X15 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formIPv6Addr of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleIBM QRadar SIEM Exposed by Trio of Security Flaws, Including Critical Command Execution Bug

Next Article CVE-2025-52552 – FastGPT Open Redirect and DOM-Based XSS Vulnerability

Highlights

CVE-2025-6857 – HDF5 Stack-Based Buffer Overflow Vulnerability

June 29, 2025

CVE ID : CVE-2025-6857

Published : June 29, 2025, 10:15 a.m. | 20 minutes ago

Description : A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the function H5G__node_cmp3 of the file src/H5Gnode.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-6399 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Critical Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Embracing the Present: Finding Joy in Your UX Journey

CVE-2025-4240 – PCMan FTP Server LCD Command Handler Buffer Overflow Vulnerability

CVE-2025-47688 – Saad Iqbal Advanced File Manager Missing Authorization Vulnerability

Microsoft rushes KB5062324 to fix Windows 11 24H2 issue blocking newer updates

CVE-2025-6857 – HDF5 Stack-Based Buffer Overflow Vulnerability

cgmnlm – colorful Gemini line mode client

CVE-2022-44613 – Apache HTTP Server Remote Code Execution

Can I use React Server Components (RSCs) today?

CVE-2025-6399 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Critical Vulnerability

Related Posts