Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

107 matches found

Circl
Circladded 2026/04/21 3:18 a.m.1 views

GHSA-7GCJ-PHFF-2884

creationtimestamp| type| source ---|---|--- 2026-04-21 03:18:04+00:00| seen| Telegram/QlBPoNymR9hPCPyX2NtJM9uRRriKED-kqAlb1qrMP0xHygk...

4.8AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/02/23 1:20 a.m.1 views

CVE-2026-2884

A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible...

9CVSS8.8AI score0.00018EPSS
Exploits1References1
OSV
OSVadded 2026/02/21 9:16 p.m.2 views

CVE-2026-2884

A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible...

8.8CVSS6.2AI score0.00018EPSS
Exploits1References5
NVD
NVDadded 2026/02/21 9:16 p.m.3 views

CVE-2026-2884

A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible...

9CVSS0.00018EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/02/21 8:32 p.m.20 views

CVE-2026-2884 D-Link DWR-M960 WAN Interface Setting formWanConfigSetup sub_41914C stack-based overflow

A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub41914C of the file /boafrm/formWanConfigSetup of the component WAN Interface Setting Handler. The manipulation of the argument submit-url leads to stack-based buffer overflow. The attack is possible...

9CVSS0.00018EPSS
Exploits1References5
Circl
Circladded 2026/02/20 5:22 p.m.3 views

CVE-2026-2884

creationtimestamp| type| source ---|---|--- 2026-02-20 17:22:06+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116104110171293955 2026-02-21 21:18:53+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mffkeuf6vt2u 2026-02-21 21:19:25+00:00| seen|...

9CVSS8.2AI score0.00018EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2026/02/20 12:0 a.m.2 views

PT-2026-21294

Name of the Vulnerable Software and Affected Versions D-Link DWR-M960 version 1.01.07 Description A flaw exists in the D-Link DWR-M960 router, specifically in the function sub 41914C within the /boafrm/formWanConfigSetup component, which handles WAN interface configuration. The issue allows a...

9CVSS8.4AI score0.00018EPSS
Exploits1References13
EUVD
EUVDadded 2026/01/16 7:9 p.m.1 views

EUVD-2026-2884

iDailyDiary 4.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the preferences tab name field. Attackers can paste a 2,000,000 character buffer into the default diary tab name to trigger an application crash...

7.5CVSS6.4AI score0.00105EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-2884

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in GitLab CE/EE affecting all versions from 11.3.4 prior to 15.1.5, 15.2 to 15.2.3, 15.3 to 15.3 to 15.3.1 allows an an authenticated user to...

9.9CVSS9.2AI score0.30029EPSS
Exploits4References2
IBM Security Bulletins
IBM Security Bulletinsadded 2025/06/28 2:35 a.m.7 views

Security Bulletin: This Power System update is being released to address CVE-2025-2884

Summary The PowerVM Virtual Trusted Platform Module vTPM feature is impacted by the referenced vulnerability. Vulnerability Details CVEID:CVE-2025-2884 DESCRIPTION: TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validatio...

6.6CVSS9.1AI score0.00078EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/06/12 6:10 p.m.6 views

CVE-2025-2884

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.6CVSS6.5AI score0.00078EPSS
Exploits0References1
OSV
OSVadded 2025/06/10 6:15 p.m.3 views

CVE-2025-2884

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.6CVSS7AI score0.00096EPSS
Exploits0References7
NVD
NVDadded 2025/06/10 6:15 p.m.8 views

CVE-2025-2884

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.6CVSS0.00078EPSS
Exploits0References8
Circl
Circladded 2025/06/10 5:53 p.m.8 views

CVE-2025-2884

creationtimestamp| type| source ---|---|--- 2025-06-10 17:53:29+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114660344390922177 2025-06-10 18:32:39+00:00| seen| https://bsky.app/profile/gcpweekly.bsky.social/post/3lrbjpwtfoc2j 2025-06-11 15:32:04+00:00| seen|...

6.6CVSS8.7AI score0.00078EPSS
Exploits0References13
Vulnrichment
Vulnrichmentadded 2025/06/10 5:29 p.m.2 views

CVE-2025-2884 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.4AI score0.00078EPSS
Exploits0References5
CVE
CVEadded 2025/06/10 5:29 p.m.236 views

CVE-2025-2884

CVE-2025-2884 concerns the TCG TPM2.0 reference implementation. The vulnerability is in the CryptHmacSign helper, where an out-of-bounds read can occur due to improper validation of the signature scheme against the signature key’s algorithm. Sources reference Errata Revision 1.83 and the TCGVRT00...

6.6CVSS6.4AI score0.00078EPSS
Exploits0References8
Cvelist
Cvelistadded 2025/06/10 5:29 p.m.30 views

CVE-2025-2884 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

0.00078EPSS
Exploits0References5
Intel
Inteladded 2025/06/10 12:0 a.m.7 views

Intel® PTT and SPS Advisory

Summary: A potential security vulnerability for some Intel® PTT and Intel® SPS firmware may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-2884 Non-Intel issued Description: Out-of-bounds read in the...

6.6CVSS7AI score0.00078EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-2884

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in V8 in Google Chrome prior to 121.0.6167.139 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTM...

6.5CVSS7.4AI score0.00131EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/02/05 2:21 p.m.5 views

CVE-2020-2884

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via IIOP, T3 to...

9.8CVSS7.3AI score0.03871EPSS
Exploits0References3
Rows per page
Query Builder