-
CVE-2025-44885
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the remote_ip parameter in the web_snmpv3_remote_engineId_add_post function.
-
CVE-2025-44886
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the byruleEditName parameter in the web_acl_mgmt_Rules_Edit_postcontains function.
-
CVE-2025-44888
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the stp_conf_name parameter in the web_stp_globalSetting_post function.
-
CVE-2025-44894
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the radDftParamKey parameter in the web_radiusSrv_dftParam_post function.
-
CVE-2025-44883
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the tacIp parameter in the web_tacplus_serverEdit_post function.
-
CVE-2025-44891
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the host_ip parameter in the web_snmp_v3host_add_post function.
-
CVE-2025-44896
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the bindEditMACName parameter in the web_acl_bindEdit_post function.
-
CVE-2025-44882
•
published on May 20, 2025
A command injection vulnerability in the component /cgi-bin/firewall.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input.
-
CVE-2025-44887
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the radIpkey parameter in the web_radiusSrv_post function.
-
CVE-2025-44890
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the host_ip parameter in the web_snmp_notifyv3_add_post function.
-
CVE-2025-44893
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the ruleNamekey parameter in the web_acl_mgmt_Rules_Apply_post function.
-
CVE-2025-44880
•
published on May 20, 2025
A command injection vulnerability in the component /cgi-bin/adm.cgi of Wavlink WL-WN579A3 v1.0 allows attackers to execute arbitrary commands via a crafted input.
-
CVE-2025-44884
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the web_sys_infoContact_post function.
-
CVE-2025-44897
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the bytftp_srvip parameter in the web_tool_upgradeManager_post function.
-
CVE-2025-44898
•
published on May 20, 2025
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the theauthName parameter in the web_aaa_loginAuthlistEdit function.
-
CVE-2025-45862
•
published on May 20, 2025
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the interfacenameds parameter in the formDhcpv6s interface.
-
CVE-2025-3079
•
published on May 19, 2025
A passback vulnerability which relates to office/small office multifunction printers and laser printers.
-
CVE-2025-3078
•
published on May 19, 2025
A passback vulnerability which relates to production printers and office multifunction printers.
-
CVE-2025-4971
•
published on May 19, 2025
Broadcom Automic
Automation Agent Unix versions
24.3.0 HF4 and < 21.0.13 HF1 allow low privileged users who have execution
rights on the agent executable to escalate their privileges.
-
CVE-2025-1308
•
published on May 19, 2025
A vulnerability exists in PX Backup whereby sensitive information may be logged under specific conditions.
