Lucene search
K

254181 matches found

EUVD
EUVD
added 3 hours ago4 views

EUVD-2026-43301

A vulnerability was found in Tenda CH22 1.0.0.1. This impacts the function formCertListInfo of the file /goform/CertListInfo. The manipulation of the argument Name results in buffer overflow. The attack can be launched remotely. The exploit has been made public and could be used...

9CVSS7.3AI score
Exploits0References7
EUVD
EUVD
added 3 hours ago4 views

EUVD-2026-43304

A vulnerability was determined in Shibby Tomato up to 1.28.0000. Affected is the function getupsvar of the file www/apcupsd/tomatodata.cgi of the component apcupsd. This manipulation of the argument Field causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has be...

9CVSS7.4AI score
Exploits0References6
RedHat Linux
RedHat Linux
added 3 hours ago4 views

Important: Red Hat Security Advisory: xorg-x11-server security update

An update for xorg-x11-server is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

8.5CVSS6.1AI score0.00212EPSS
Exploits0References2
CVE
CVE
added 5 hours ago13 views

CVE-2026-15543

The CVE-2026-15543 entry concerns Tenda CH22 firmware 1.0.0.1. The vulnerability affects the function formCertListInfo in /goform/CertListInfo, where manipulating the Name argument triggers a buffer overflow. This is a remote-exploit scenario, with public exploits cited. The available sources pro...

9CVSS7.3AI score
Exploits0References6
Nuclei
Nuclei
added 8 hours ago28 views

XiongMai uc-httpd 1.0.0 - Buffer Overflow

Buffer overflow in XiongMai uc-httpd 1.0.0 has unspecified impact and attack vectors, a different vulnerability than CVE-2017-16725. id: CVE-2018-10088 info: name: XiongMai uc-httpd 1.0.0 - Buffer Overflow author: 0xAkoko severity: critical description: | Buffer overflow in XiongMai uc-httpd 1.0....

10CVSS7.1AI score0.40386EPSS
Exploits8References4
RedHat Linux
RedHat Linux
added 8 hours ago3 views

Important: Red Hat Security Advisory: perl-DBI security update

An update for perl-DBI is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.5AI score0.00376EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 8 hours ago3 views

DBI: DBI: Buffer overflow in error handling can lead to arbitrary code execution

A flaw was found in DBI, a Perl database interface. This vulnerability allows an attacker to trigger a buffer overflow by manipulating error messages within an application. When specific error handling options are active, an attacker can provide oversized error text, which may lead to arbitrary...

9.8CVSS6.5AI score0.00376EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 8 hours ago7 views

xorg: X11: xserver: X.org: glamor Font Atlas Heap Buffer Overflow

A flaw was found in the glamorfontget function of the xorg-x11-server. This vulnerability, a heap buffer overflow, occurs when the server processes a specially crafted PCF font file where individual glyph metrics exceed the declared maximum bounds. An authenticated X client can exploit this by...

8.5CVSS6.5AI score0.00212EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 9 hours ago3 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates a 256 byte stack buffer but libXfont2's alias...

7.8CVSS6.2AI score0.00157EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 9 hours ago3 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. The X server has multiple stack buffers sized XkbMaxShiftLevel XkbNumKbdGroups but CheckKeyTypes does not verify or clamp non-canonical key types to XkbMaxShiftLevel. A client can change key types to excessive shift...

7.8CVSS7.1AI score0.00161EPSS
Exploits0References7
EUVD
EUVD
added 11 hours ago9 views

EUVD-2026-43263

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

5.3CVSS6.1AI score
Exploits0References10
EUVD
EUVD
added 12 hours ago4 views

EUVD-2026-43257

Integer overflow or wraparound vulnerability in Samsung Open Source rlottie allows Overflow Buffers. This issue affects...

5.5CVSS6.1AI score
Exploits0References1
CVE
CVE
added yesterday16 views

CVE-2026-10666

CVE-2026-10666 affects Zephyr’s net_ipaddr_parse() path (IPv4 address-with-port parsing via net_ipaddr_parse() in subsys/net/ip/utils.c). The bug stems from parse_ipv4() copying the port suffix into a fixed 17-byte buffer without validating port length, using a length derived from an unbounded in...

8.1CVSS6.2AI score
Exploits0References3
CVE
CVE
added yesterday15 views

CVE-2026-10665

CVE-2026-10665 concerns Zephyr’s WireGuard implementation (subsys/net/lib/wireguard). The flaw: wg_process_data_message() linearizes an inbound payload into a fixed pool buffer, passing the attacker-controlled data_len as both the destination capacity and copy length to net_buf_linearize, ignorin...

7.4CVSS6.2AI score
Exploits0References2
CVE
CVE
added yesterday14 views

CVE-2026-10664

CVE-2026-10664 reports an out-of-bounds write in the nRF70 Wi‑Fi driver power-save event handler (nrf_wifi_event_proc_get_power_save_info). The handler copies TWT entries from a power-save info event into a fixed-size twt_flows[8], iterating up to num_twt_flows without validating against WIFI_MAX...

5CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday22 views

CVE-2026-15484

CVE-2026-15484 affects TRENDnet TEW-821DAP (firmware 1.12B01). The vulnerable element is the function sub_41EC14 in /goform/tools_nslookup of the ssi component, where input manipulation leads to a buffer overflow. Exploitation is described as possible to perform remotely via network. The vendor n...

9CVSS7.2AI score0.00419EPSS
Exploits0References5
EUVD
EUVD
added yesterday5 views

EUVD-2026-43206

A vulnerability was detected in TRENDnet TEW-821DAP 1.12B01. The affected element is the function sub41EC14 of the file /goform/toolsnslookup of the component ssi. The manipulation results in buffer overflow. It is possible to launch the attack remotely. The vendor explains: "We are unable to...

9CVSS6.2AI score0.00419EPSS
Exploits0References5
CVE
CVE
added yesterday15 views

CVE-2026-15483

TRENDnet TEW-821DAP 1.12B01 contains a buffer overflow in the SSI component: the function sub_41EC14 in /goform/tools_nslookup is triggered by manipulating the nslookup_target argument, potentially allowing remote code execution. Several sources confirm the same issue for TEW-821DAP (v1.0R) as th...

9CVSS7.3AI score0.00419EPSS
Exploits0References5
EUVD
EUVD
added yesterday7 views

EUVD-2026-43205

A security vulnerability has been detected in TRENDnet TEW-821DAP 1.12B01. Impacted is the function sub41EC14 of the file /goform/toolsnslookup of the component ssi. The manipulation of the argument nslookuptarget leads to buffer overflow. It is possible to initiate the attack remotely. The vendo...

9CVSS6.3AI score0.00419EPSS
Exploits0References5
EUVD
EUVD
added yesterday8 views

EUVD-2026-43202

A vulnerability was identified in Trendnet TEW-635BRM up to 1.00.03. This affects the function starthttpd of the file /sbin/rc of the component Web Service. Such manipulation of the argument devicename leads to stack-based buffer overflow. The attack can be executed remotely. The exploit is...

9CVSS6.4AI score0.00419EPSS
Exploits0References5
Rows per page
Query Builder