CVE-2025-6399 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Critical Vulnerability

June 21, 2025

CVE ID : CVE-2025-6399

Published : June 21, 2025, 4:15 a.m. | 2 hours ago

Description : A vulnerability, which was classified as critical, was found in TOTOLINK X15 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formIPv6Addr of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleIBM QRadar SIEM Exposed by Trio of Security Flaws, Including Critical Command Execution Bug

Next Article CVE-2025-52552 – FastGPT Open Redirect and DOM-Based XSS Vulnerability

Agent Mode for Gemini added to Android Studio

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

Where to buy a Meta Quest 3S Xbox Edition — and why it’s a better bargain than the “normal” Meta Quest 3S

Vite 7.0 Is Out

Vite 7.0 Is Out

Exploring JavaScript ES2025 Edition

Mastering Mixed DML Operations in Apex

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft is reportedly planning yet more major cuts at Xbox — as early as next week

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

“Deus Ex” just turned 25 years old and it’s still the best PC game of all time — you only need $2 to play it on practically anything

CVE-2025-6399 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Critical Vulnerability

Critical Kaleris Navis N4 Flaw (CVE-2025-2566, CVSS 9.8): Supply Chain Infrastructure at Risk!

TeamViewer for Windows Vulnerability Let Attackers Delete Files Using SYSTEM Privileges

This $400 Motorola stylus phone shouldn’t be this good, but I’m seriously impressed

Rilasciata 4MLinux 48: la mini-distribuzione GNU/Linux leggera e versatile

How to Debug CI/CD Pipelines: A Handbook on Troubleshooting with Observability Tools

Ubuntu 25.10 Drops Support for GNOME on Xorg

The Future is Now: How to Create a YouTube Channel Using Only AI (Researched by Srinidhi Ranganathan)

CVE-2025-4903 – D-Link DI-7003GV2 Authentication Bypass Vulnerability

Microsoft Edge for Android Rolls Out ‘Custom App Icons’ for 50th Anniversary and New Protection Report

CVE-2025-3623 – WordPress Uncanny Automator PHP Object Injection Vulnerability

CVE-2025-6399 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Critical Vulnerability

Related Posts