A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This vulnerability affects the function setDMZ of the file /goform/setDMZ. The manipulation of the argument DMZIPAddress leads to...
The CBX Restaurant Booking WordPress plugin through 1.2.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF...
Stack-based buffer overflow in LoadOFF in bulletphysics bullet3 before 3.26 on all platforms allows remote attackers to execute arbitrary code via a crafted OFF file with an overlong initial token processed by the VHACD...
A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This affects the function remoteManagement of the file /goform/remoteManagement. The manipulation of the argument portNumber leads to stack-based...
A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function sub_3517C of the file /goform/setWan. The manipulation of the argument...
A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function um_red of the file /goform/RP_setBasicAuto. The manipulation of the argument hname...
A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected is the function ipv6cmd of the file /goform/setIpv6. The manipulation of the argument Ipv6PriDns/Ipv6SecDns/Ipv6StaticGateway/LanIpv6Addr/LanPrefixLen/pppoeUser/pppoePass/pppoeIdleTime/pppoeRedialPeriod/Ipv6in4_PrefixLen/LocalIpv6/RemoteIpv4/LanIPv6_Prefix/LanPrefixLen/ipv6to4Relay/ipv6rdRelay/tunrd_PrefixLen/wan_UseLinkLocal/Ipv6StaticIp/Ipv6PrefixLen leads to os...
A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. This issue affects the function um_inspect_cross_band of the file /goform/RP_setBasicAuto. The manipulation of the argument staticGateway leads to...
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through race condition. Assigner : scy@openharmony.io More information : https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-08.md
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory. Assigner : scy@openharmony.io More information : https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-07.md
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause DOS through type confusion. Assigner : scy@openharmony.io More information : https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-07.md
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through use after free. Assigner : scy@openharmony.io More information : https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-07.md
in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through NULL pointer dereference. Assigner : scy@openharmony.io More information : https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-07.md
in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in tcb through race condition. Assigner : scy@openharmony.io More information : https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2025/2025-08.md