CVE-2025-34108 | Falconstor Disk Pulse Enterprise 9.0.34 HTTP POST Request /login Username stack-based overflow (EDB-40452)

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability was found in Falconstor Disk Pulse Enterprise 9.0.34 and classified as critical. Affected by this issue is some unknown functionality in the library libspp.dll of the file /login of the component HTTP POST Request Handler. The manipulation of the argument Username leads to stack-based buffer overflow.

This vulnerability is handled as CVE-2025-34108. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-34108 | Falconstor Disk Pulse Enterprise 9.0.34 HTTP POST Request /login Username stack-based overflow (EDB-40452)

Post correlati

CVE-2024-9878 | 10Web Photo Gallery Plugin up to 1.8.30 on WordPress cross site scripting

CVE-2024-1394 | golang-fips openssl/openssl/rsa.go pkey​/ctx memory leak

CVE-2024-47836 | admidio up to 4.3.11 deserialization

CVE-2024-33763 | lunasvg 2.3.9 layoutcontext.cpp stack-based overflow

CVE-2024-1394 | golang-fips openssl/openssl/rsa.go pkey/ctx memory leak