CVE-2025-65288

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-65288

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-65288.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-65288

Published

2025-12-09T17:15:55.603Z

Modified

2026-03-13T03:41:11.917486Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A buffer overflow in the Mercury MR816v2 (081C3114 4.8.7 Build 110427 Rel 36550n) occurs when the device accepts and stores excessively long hostnames from LAN hosts without proper length validation. The affected code performs unchecked copies/concatenations into fixed-size buffers. A crafted long hostname can overflow the buffer, cause a crash (DoS) and potentially enabling remote code execution.

References

https://damiri.fr/en/cve/CVE-2025-65288

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-65288.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "081c3114_4.8.7-build_110427"
            }
        ]
    }
]