Overview CVE-2025-60702 is a critical command injection vulnerability affecting TOTOLINK A950RG routers running firmware version V5.9c.4592_B20191022_ALL. This flaw allows unauthenticated remote attackers to execute arbitrary commands on the affected device. This is achieved by injecting malicious code into the `ipDoamin` parameter of the `setDiagnosisCfg` function, which is then executed by the router’s operating system. Due to the lack of input sanitization, the attacker can bypass security measures and gain full control of the router. Technical Details The vulnerability resides in the `system.so` binary of the router’s firmware. Specifically, the `setDiagnosisCfg` function is vulnerable. This function retrieves the `ipDoamin` parameter from…

Overview A critical buffer overflow vulnerability, identified as CVE-2025-60699, has been discovered in the TOTOLINK A950RG Router firmware version V5.9c.4592_B20191022_ALL. This flaw allows an unauthenticated remote attacker to potentially execute arbitrary code on the affected device. The vulnerability resides within the `global.so` binary, specifically in the `getSaveConfig` function. Technical Details The vulnerability stems from the use of `strcpy()` within the `getSaveConfig` function. This function retrieves the `http_host` parameter from user input using `websGetVar`. Critically, `strcpy()` copies this `http_host` parameter into a fixed-size stack buffer (`v13`) *without* performing any length checks. By sending an HTTP request with an `http_host` value exceeding…

Overview A critical stack buffer overflow vulnerability, identified as CVE-2025-60679, has been discovered in the D-Link DIR-816A2 router. This vulnerability affects the firmware version DIR-816A2_FWv1.10CNB05_R1B011D88210.img and resides within the upload.cgi module, which handles firmware version information. Successfully exploiting this vulnerability could allow a remote attacker to execute arbitrary code on the affected device. Technical Details The vulnerability stems from insufficient input validation within the upload.cgi module when processing firmware version information. Specifically, the content of /proc/version is read into a 512-byte buffer. This content is then concatenated using sprintf() into another 512-byte buffer, which already contains a 29-byte constant string.…

Overview CVE-2025-59840 is a high-severity vulnerability affecting the Vega visualization grammar library. This vulnerability allows for arbitrary JavaScript code execution in specific scenarios, even when the “safe mode” expressionInterpreter is enabled. This poses a significant risk to applications using Vega that allow user-defined Vega JSON definitions. Technical Details The vulnerability exists in Vega versions prior to 6.2.0. Applications are susceptible if they meet the following conditions: The application uses the vega library and attaches both the vega library and a vega.View instance to the global window object (similar to the Vega Editor setup). The application allows users to define Vega…

Overview CVE-2025-55810 details a critical vulnerability found in the Alaga Home Security WiFi Camera 3K (model S-CW2503C-H). This security flaw, affecting hardware version V03 and firmware version 1.4.2, allows a physical attacker to execute commands as root. This is achieved by placing a specially crafted script file with a specific name on an SD card and inserting it into the camera. Technical Details The vulnerability stems from a lack of proper input validation within the camera’s firmware when processing files from the SD card. Specifically, the camera seems to automatically execute script files with a predefined, predictable name when present…

Overview CVE-2025-46370 is a security vulnerability affecting Dell Alienware Command Center (AWCC) version 6.x, specifically versions prior to 6.10.15.0. This vulnerability, classified as a Process Control issue, could allow a local, low-privileged attacker to potentially gain unauthorized access to sensitive information. Technical Details The vulnerability resides within the AWCC software and stems from insufficient access control mechanisms during process execution. A low-privileged user with local access to the affected system could potentially manipulate process parameters or influence the execution flow of AWCC components, leading to the disclosure of sensitive data. While specific details are not publicly available to prevent further…

Overview A high-severity vulnerability, identified as CVE-2025-46369, has been discovered in Dell Alienware Command Center (AWCC) version 6.x, specifically in versions prior to 6.10.15.0. This vulnerability allows a low-privileged attacker with local access to potentially escalate their privileges on the system. This poses a significant risk to systems running affected versions of AWCC. Technical Details CVE-2025-46369 is an Insecure Temporary File vulnerability. The Dell Alienware Command Center creates temporary files in an insecure manner, potentially allowing a low-privileged user to manipulate these files. By exploiting this weakness, an attacker could overwrite system files or execute arbitrary code with elevated privileges.…

Overview This article provides a detailed analysis of CVE-2025-46368, a Medium severity vulnerability affecting Dell Alienware Command Center (AWCC). Specifically, versions prior to 6.10.15.0 are susceptible to an Insecure Temporary File vulnerability. This flaw could allow a low-privileged attacker with local access to tamper with information. It’s crucial to understand the implications and apply the necessary updates to protect your system. Technical Details CVE-2025-46368 stems from the way older versions of Dell Alienware Command Center create and manage temporary files. The application creates temporary files in a predictable location and without sufficient access restrictions. A low-privileged attacker with local access…

Overview A critical vulnerability has been identified in Dell Alienware Command Center (AWCC), specifically versions prior to 6.10.15.0. This vulnerability, identified as CVE-2025-46367, allows a low-privileged attacker with local access to potentially execute arbitrary code on the affected system. This poses a significant security risk for users of the Dell Alienware Command Center. Technical Details CVE-2025-46367 is classified as a “Detection of Error Condition Without Action” vulnerability. This means that the AWCC software fails to properly handle or respond to specific error conditions. An attacker can leverage this flaw by triggering an error condition in a way that allows them…

Overview A security vulnerability has been identified in Dell Alienware Command Center (AWCC) software. This vulnerability, tracked as CVE-2025-46362, affects versions prior to 6.10.15.0. A low-privileged attacker with local access can exploit this Improper Access Control vulnerability to potentially tamper with sensitive information. Technical Details CVE-2025-46362 is an Improper Access Control vulnerability present in Dell Alienware Command Center 6.x (AWCC) versions before 6.10.15.0. The vulnerability stems from insufficient access control mechanisms, allowing a local attacker with limited privileges to gain unauthorized access and modify sensitive data managed by the application. This improper access control allows modification of data normally inaccessible…