31 matches found
CVE-2026-34122
A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter,...
EUVD-2026-18434
A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter,...
CVE-2026-34122
A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter,...
CVE-2026-34122 Stack-based Buffer Overflow Leading to Denial of Service in TP-Link Tapo C520WS
A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter,...
CVE-2026-34122 Stack-based Buffer Overflow Leading to Denial of Service in TP-Link Tapo C520WS
A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter,...
PT-2026-29850
A stack-based buffer overflow vulnerability was identified in TP-Link Tapo C520WS v2.6 within a configuration handling component due to insufficient input validation. An attacker can exploit this vulnerability by supplying an excessively long value for a vulnerable configuration parameter,...
CVE-2026-24308
The CVE concerns Apache ZooKeeper (versions 3.8.5 and 3.9.4) where ZKConfig improperly handles configuration values, causing sensitive client configuration data to be exposed in log files at INFO level across all platforms. Impact is exposure of sensitive information stored in client configuratio...
CVE-2026-24308 Apache ZooKeeper: Sensitive information disclosure in client configuration handling
Improper handling of configuration values in ZKConfig in Apache ZooKeeper 3.8.5 and 3.9.4 on all platforms allows an attacker to expose sensitive information stored in client configuration in the client's logfile. Configuration values are exposed at INFO level logging rendering potential producti...
CVE-2026-2964
CVE-2026-2964 affects higuma web-audio-recorder-js (versions 0.1 and 0.1.1). The root cause is a flaw in the framework’s Dynamic Config Handling within the library file lib/WebAudioRecorder.js: the affected function, extend, permits improper modification of object prototype attributes (prototype ...
USN-8051-1 libssh vulnerabilities
It was discovered that libssh clients incorrectly handled the key exchange process. A remote attacker could possibly use this issue to cause libssh clients to crash, resulting in a denial of service. CVE-2025-8277 It was discovered that the libssh SCP client incorrectly sanitized paths received...
Improper Access Control
github.com/slackhq/nebula is vulnerable to Improper Access Control. The vulnerability is due to incorrect handling of CIDR ranges in certain configurations, which allows an attacker to spoof or use arbitrary source IP addresses within the Nebula network...
Sensitive Information Exposure
docusaurus-plugin-content-gists is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper handling of configuration options that include GitHub Personal Access Tokens, which are inadvertently embedded into client-side JavaScript bundles during the production build,...
CVE-2025-26169
IXON VPN Client before 1.4.4 on Windows allows Local Privilege Escalation to SYSTEM because there is code execution from a configuration file that can be controlled by a low-privileged user. There is a race condition in which a temporary configuration file, in a world-writable directory, can be...
OSV-2025-161 Heap-buffer-overflow in se_add_pair
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=398356443 Crash type: Heap-buffer-overflow READ 8 Crash state: seaddpair sereadconf runconfighandler...
OSV-2025-133 Stack-buffer-overflow in se_read_conf
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=396958482 Crash type: Stack-buffer-overflow READ 1 Crash state: sereadconf runconfighandler snmpconfigwhen...
RHEL 8 : java-17-openjdk security update for RHEL 8.4 (Moderate) (RHSA-2025:0421)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:0421 advisory. The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: JDK:...
NetworkManager-libreswan: Local privilege escalation via leftupdown
A flaw was found in the libreswan client plugin for NetworkManager NetkworkManager-libreswan, where it fails to properly sanitize the VPN configuration from the local unprivileged user. In this configuration, composed by a key-value format, the plugin fails to escape special characters, leading t...
Centreon Poller Broker SQL Injection Privilege Escalation Vulnerability
This vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of requests to modify poller broker configuration. The issue results from the lack of...
SUSE-SU-2022:0727-2 Security update for libeconf, shadow and util-linux
This security update for libeconf, shadow and util-linux fix the following issues: libeconf: - Add libeconf to SLE-Module-Basesystem15-SP3 because needed by 'util-linux' and 'shadow' to fix autoyast handling of security related parameters bsc1192954, jscSLE-23384, jscSLE-23402 Issues fixed in...
envoy: Incorrect configuration handling allows mTLS session re-use without re-validation
A flaw was found in envoy. When certificate validation settings are changed, incorrect configuration handling allows TLS session reuse without revalidation...