CVE-2026-2881 D-Link DWR-M960 Advanced Firewall Configuration Endpoint formFirewallAdv sub_425FF8 stack-based overflow

A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub425FF8 of the file /boafrm/formFirewallAdv of the component Advanced Firewall Configuration Endpoint. Such manipulation of the argument submit-url leads to stack-based buffer overflow. The attack...

CVE-2026-2881

creationtimestamp| type| source ---|---|--- 2026-02-20 17:08:35+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116104057007671449 2026-02-21 20:24:41+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mffhdx4uay2n 2026-02-24 02:20:09+00:00| seen|...

PT-2026-21293

Name of the Vulnerable Software and Affected Versions D-Link DWR-M960 version 1.01.07 Description A flaw exists in the Advanced Firewall Configuration Endpoint of the D-Link DWR-M960. This issue stems from a stack-based buffer overflow in the sub 425FF8 function within the /boafrm/formFirewallAdv...

ROOT-OS-DEBIAN-11-CVE-2022-2881 CVE-2022-2881 in rootio-bind9 - Patched by Root

Root has patched CVE-2022-2881 in the rootio-bind9 package for Root:Debian:11. Multiple fixed versions available...

CVE-2023-2881

Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10...

CVE-2025-2881

creationtimestamp| type| source ---|---|--- 2025-04-12 02:51:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11532 2025-04-12 05:42:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmlt6rccl42i 2025-04-12 06:39:52+00:00| seen|...

CVE-2025-2881 Developer Toolbar <= 1.0.3 - Unauthenticated Information Exposure

The Developer Toolbar plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.3 through the publicly accessible phpinfo.php script. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in th...

WordPress Developer Toolbar plugin <= 1.0.3 - Unauthenticated Information Exposure vulnerability

Unauthenticated Information Exposure vulnerability discovered by Avraham Shemesh in WordPress Plugin Developer Toolbar versions = 1.0.3...

Linux Distros Unpatched Vulnerability : CVE-2024-2881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Fault Injection vulnerability in wced25519signmsg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker...

Linux Distros Unpatched Vulnerability : CVE-2022-2881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process. CVE-2022-2881 Note that Nessus relie...

Azure Linux 3.0 Security Update: mariadb (CVE-2024-2881)

The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2881 advisory. - Fault Injection vulnerability in wced25519signmsg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL...

CBL Mariner 2.0 Security Update: mariadb (CVE-2024-2881)

The version of mariadb installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2881 advisory. - Fault Injection vulnerability in wced25519signmsg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL...

CentOS 7 : thunderbird (RHSA-2021:2881)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:2881 advisory. - If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the...

CVE-2024-2881

creationtimestamp| type| source ---|---|--- 2024-08-30 03:06:12+00:00| seen| https://t.me/cvedetector/4485...

CVE-2024-2881 Fault Injection of EdDSA signature in WolfCrypt

Fault Injection vulnerability in wced25519signmsg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a victim process to disclose information and escalate privileges via Rowhammer fault injection to the...

CVE-2024-2881 Fault Injection of EdDSA signature in WolfCrypt

Fault Injection vulnerability in wced25519signmsg function in wolfssl/wolfcrypt/src/ed25519.c in WolfSSL wolfssl5.6.6 on Linux/Windows allows remote attacker co-resides in the same system with a victim process to disclose information and escalate privileges via Rowhammer fault injection to the...

CVE-2024-2881

CVE-2024-2881 concerns WolfSSL (wolfssl5.6.6) where an attacker co-residing on the same system can exploit a fault injection vulnerability in the function wc_ed25519_sign_msg (wolfcrypt/src/ed25519.c) to disclose information and escalate privileges via Rowhammer fault injection to the ed25519_key...

RHEL 7 : firefox (RHSA-2024:2881)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:2881 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

Oracle Linux 7 : firefox (ELSA-2024-2881)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-2881 advisory. 115.11.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add...

openSUSE: Security Advisory for spice (SUSE-SU-2022:2881-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...