254591 matches found
CVE-2026-48863
The CVE-2026-48863 issue is a stack-based buffer overflow in libsolv’s EdDSA verification when copying the EdDSA 's' MPI, caused by length handling. An adversary could craft an Ed25519 PGP signature with mismatched MPI lengths to trigger a denial of service in automated package/repo processing wo...
CVE-2026-62349
TDengine 3.4.1.6 and earlier contains an off-by-one/write vulnerability in source/libs/parser/src/parUtil.c: trimString() only checks a single-byte space before handling SQL string escape sequences (%, _, or \x), enabling a one-byte out-of-bounds write to the stack buffer tmpTokenBuf. This can le...
CVE-2026-10673
The CVE-2026-10673 affects the Zephyr ADIN2111/ADIN1110 Ethernet driver (drivers/ethernet/eth_adin2111.c) in OA SPI mode. The code reassembles frames by copying device-supplied 64-byte chunks into a fixed buffer (CONFIG_ETH_ADIN2111_BUFFER_SIZE, default 1524) without verifying that the write curs...
perl-DBI:1.641 security update
An update is available for perl-DBI, module.perl-DBI. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The perl-DBI package provides the standard database interfa...
EUVD-2026-44580
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the j2kprecinctsubband::parsepacketheader in source/core/coding/codingunits.cpp...
EUVD-2026-44581
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the openhtj2kdecoderimpl::invoke, invokelinebased, invokelinebasedstream, and invokelinebasedpredecoded function in source/core/interface/decoder.cpp...
CVE-2026-51380
The CVE-2026-51380 entry concerns the Tenda AC10 v3 router with firmware V03.03.16.09. A buffer overflow in the /cgi-bin/UploadCfg endpoint could allow a remote attacker to cause a permanent Denial of Service or potentially execute arbitrary code. The available documents do not provide specific r...
CVE-2026-51808
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the openhtj2kdecoderimpl::invoke, invokelinebased, invokelinebasedstream, and invokelinebasedpredecoded function in source/core/interface/decoder.cpp...
CVE-2026-51807
Buffer Overflow vulnerability in OpenHTJ2K v.0.18.4 and before allows an attacker to execute arbitrary code via the j2kprecinctsubband::parsepacketheader in source/core/coding/codingunits.cpp...
libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling
A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, which can cause it to crash. This issue might allow attackers to run harmful code in rare...
CVE-2026-24272
NVIDIA TensorRT contains a vulnerability where an attacker might cause an overflow to a heap-based buffer. A successful exploit of this vulnerability might lead to code execution...
CVE-2026-24268
NVIDIA TensorRT contains a vulnerability where an attacker might cause a heap-based buffer overflow. A successful exploit of this vulnerability might lead to code execution...
CVE-2026-48269 Premiere Pro | Heap-based Buffer Overflow (CWE-122)
Premiere Pro is affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2026-47971 Media Encoder | Stack-based Buffer Overflow (CWE-121)
Media Encoder is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2026-47971
Media Encoder is affected by a Stack-based Buffer Overflow (CWE-121) that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious file. The CVE entry provides no vendor-specific patch details in the connecte...
CVE-2026-58542
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally...
CVE-2026-57090
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-56194
Heap-based buffer overflow in Windows Network File System allows an authorized attacker to elevate privileges over a network...
CVE-2026-56189
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code locally...
CVE-2026-55141
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...