{"id":53672,"date":"2025-06-20T04:50:11","date_gmt":"2025-06-20T04:50:11","guid":{"rendered":""},"modified":"2025-09-15T10:14:21","modified_gmt":"2025-09-15T16:14:21","slug":"cve-2025-6091-critical-buffer-overflow-vulnerability-in-h3c-gr-3000ax-v100r007l50","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-6091-critical-buffer-overflow-vulnerability-in-h3c-gr-3000ax-v100r007l50\/","title":{"rendered":"CVE-2025-6091: Critical Buffer Overflow Vulnerability in H3C GR-3000AX V100R007L50<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

The cybersecurity landscape has seen the emergence of yet another vulnerability, CVE-2025-6091, affecting H3C GR-3000AX V100R007L50. This vulnerability is particularly critical as it exposes a buffer overflow within the system, raising the risk of potential data leakage or even full system compromise. The vulnerability is significant because it allows for remote<\/a> exploitation. The affected function is UpdateWanParamsMulti\/UpdateIpv6Params of the file \/routing\/goform\/aspForm. This vulnerability has been made public, increasing the potential risk of exploitation<\/a>.
\nDespite the vendor confirming the existence of this issue, they currently have no immediate plans for remediation, assessing the risk as low. This is a concerning stance given the potential ramifications and severity of the vulnerability<\/a>.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-6091
\nSeverity: Critical, CVSS Score 8.8
\nAttack Vector: Remote
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: Potential system<\/a> compromise or data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n