📦 Yf325 Firmware

Two heap-based buffer overflow vulnerabilities in Yifan YF325 routers allow remote attackers to execute arbitrary code or cause denial of service via specially crafted network requests. The vulnerabil...

This CVE describes an authentication bypass vulnerability in Yifan YF325 routers due to leftover debug code in the httpd service. Attackers can send specially crafted network requests to bypass authen...

A stack-based buffer overflow vulnerability in Yifan YF325 routers allows remote attackers to execute arbitrary code by sending specially crafted network requests. This affects Yifan YF325 v1.0_202211...

Two heap-based buffer overflow vulnerabilities in Yifan YF325 router's httpd manage_post functionality allow remote code execution via specially crafted network requests. The integer overflow leads to...

An authentication bypass vulnerability in the httpd nvram.cgi functionality of Yifan YF325 routers allows unauthenticated attackers to execute arbitrary commands. This affects Yifan YF325 routers runn...

A buffer overflow vulnerability in the Yifan YF325 router's HTTP server allows remote attackers to execute arbitrary commands by sending specially crafted network requests. This affects YF325 routers ...

This vulnerability allows remote attackers to execute arbitrary commands on Yifan YF325 routers by sending specially crafted network requests to the validate.so diag_ping_start functionality. It affec...