CVE-2025-44888 | Planet Technology FW-WGS-804HPT 1.305b241111 web_stp_globalSetting_post stp_conf_name stack-based overflow

Inserito da Angelo Barbosa | Mag 21, 2025 | CVE

A vulnerability classified as critical has been found in Planet Technology FW-WGS-804HPT 1.305b241111. Affected is the function web_stp_globalSetting_post. The manipulation of the argument stp_conf_name leads to stack-based buffer overflow.

This vulnerability is traded as CVE-2025-44888. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-44888 | Planet Technology FW-WGS-804HPT 1.305b241111 web_stp_globalSetting_post stp_conf_name stack-based overflow

Post correlati

CVE-2023-48340 | Unisoc S8000 Video Decoder out-of-bounds write

CVE-2024-25603 | Liferay Portal/DXP DDMForm instanceId cross site scripting

CVE-2024-50206 | Linux Kernel up to 6.11.5 mtk_eth_soc memory corruption (68cd084e3ec1/88806efc034a)

CVE-2023-45479 | Tenda AC10 US_AC10V4.0si_V16.03.10.13_cn Parameter sub_49E098 list stack-based overflow