CVE-2025-4440 | H3C GR-1800AX up to 100R008 /goform/aspForm EnableIpv6 param buffer overflow

Inserito da Angelo Barbosa | Mag 8, 2025 | CVE

A vulnerability was found in H3C GR-1800AX up to 100R008 and classified as critical. Affected by this issue is the function EnableIpv6 of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow.

This vulnerability is handled as CVE-2025-4440. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available.

CVE-2025-4440 | H3C GR-1800AX up to 100R008 /goform/aspForm EnableIpv6 param buffer overflow

Post correlati

CVE-2024-42348 | FOGproject FOG up to 1.5.10.41.2 Computer Registration command injection (GHSA-456c-4gw3-c9xw)

CVE-2024-5914 | Palo Alto Cortex XSOAR CommonScripts prior 1.12.33 command injection

CVE-2021-47010 | Linux Kernel up to 4.19.190/5.4.118/5.10.36/5.11.20/5.12.3 tcp_set_default_congestion_control information disclosure

CVE-2024-22212 | NextCloud Global Site Selector up to 1.4.0/2.1.1/2.3.3/2.4.4 authentication bypass (GHSA-vj5q-f63m-wp77)