CVE-2025-15194 | D-Link DIR-600 up to 2.15WWb02 HTTP Header hedwig.cgi Cookie stack-based overflow

A vulnerability was found in D-Link DIR-600 up to 2.15WWb02 and classified as critical. Affected by this vulnerability is an unknown functionality of the file hedwig.cgi of the component HTTP Header Handler. The manipulation of the argument Cookie results in stack-based buffer overflow. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is known as CVE-2025-15194. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-15194 | D-Link DIR-600 up to 2.15WWb02 HTTP Header hedwig.cgi Cookie stack-based overflow

Post correlati

CVE-2024-46731 | Linux Kernel up to 5.10.225/5.15.166/6.1.108/6.6.49/6.10.8 AMD mc_data out-of-bounds

CVE-2024-24130 | Mail2World v12 Business Control Center resellercenter/login.asp Usr cross site scripting

CVE-2022-49392 | Linux Kernel up to 5.15.46/5.17.14/5.18.3 8250_aspeed_vuart platform_get_resource null pointer dereference

CVE-2024-37770 | 14Finger 1.1 fingerprint Privilege Escalation (Issue 13)