CVE-2025-6165 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

June 17, 2025

CVE ID : CVE-2025-6165

Published : June 17, 2025, 6:15 a.m. | 2 hours, 44 minutes ago

Description : A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6166 – Frdel Agent-Zero Path Traversal Vulnerability

Next Article CVE-2025-6164 – TOTOLINK A3002R HTTP POST Request Handler Buffer Overflow Vulnerability

Highlights

CVE-2025-30402 – Apache ExecuTorch Heap Buffer Overflow Vulnerability

July 11, 2025

CVE ID : CVE-2025-30402

Published : July 11, 2025, 6:15 p.m. | 2 hours, 50 minutes ago

Description : A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit 93b1a0c15f7eda49b2bc46b5b4c49557b4e9810f

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-6165 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

CVE-2025-5154 – PhonePe SQLite Database Cleartext Storage Vulnerability

Zero Gravity Tears: Welcome to the Future

CVE-2025-50148 – Apache HTTP Server Unvalidated User Input

Distribution Release: Feren OS 2025.03

CVE-2025-30402 – Apache ExecuTorch Heap Buffer Overflow Vulnerability

For the Love of Code: a summer hackathon for joyful, ridiculous, and wildly creative projects

Cubify Anything: Scaling Indoor 3D Object Detection

Plover is a stenography engine

CVE-2025-6165 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Related Posts