Lucene search
K

10 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/12 11:59 p.m.7 views

CVE-2026-8053

An issue in MongoDB Server's time-series collection implementation allows an authenticated user with database write privileges to trigger an out-of-bounds memory write in the mongod process. The issue results from an inconsistency in the internal field-name-to-index mapping within the time-series...

8.8CVSS6.1AI score0.0057EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/02/22 12:0 a.m.9 views

Yifang CMS 代码注入漏洞

Yifang CMS is a PHP enterprise website development and management system provided by Yifang Corporation. Versions of Yifang CMS 2.0.5 and earlier contained a code injection vulnerability. This vulnerability stemmed from incorrect handling of the parameter ‘name/index’ in the file...

4.8CVSS5.7AI score0.00218EPSS
Exploits1References7
CVE
CVE
added 2025/12/18 5:2 p.m.13 views

CVE-2025-14879

CVE-2025-14879 affects Tenda WH450 v1.0.0.18. The vulnerability is in the HTTP Request Handler’s /goform/onSSIDChange function, where manipulating the ssid_index argument leads to a stack-based buffer overflow. It enables remote initiation and exploitation, with public PoC/reference material avai...

10CVSS9.4AI score0.05867EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2024/04/27 12:0 a.m.3 views

Tenda i21 安全漏洞

Tenda i21 is a wireless access point from Tenda China. A security vulnerability exists in Tenda i21 version 1.0.0.144656, which stems from an incorrect operation of the parameter ssidIndex that can cause a stack-based buffer overflow. No details of the vulnerability are provided at this time...

9CVSS7.3AI score0.01349EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.6 views

SUSE CVE-2005-2801

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...

7.5CVSS7.1AI score0.0337EPSS
Exploits1References3
OSV
OSV
added 2019/11/09 1:15 p.m.3 views

UBUNTU-CVE-2019-18840

In wolfSSL 4.1.0 through 4.2.0c, there are missing sanity checks of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a one-byte heap-based buffer overflow inside the DecodedCert structure in GetName in wolfcrypt/src/asn.c because the domain name location...

7.5CVSS6.1AI score0.01972EPSS
Exploits1References3
seebug.org
seebug.org
added 2017/06/27 12:0 a.m.74 views

Windows Kernel ATMFD.DLL out-of-bounds read due to malformed Name INDEX in the CFF table(CVE-2017-8483)

We have encountered a Windows kernel crash in the ATMFD.DLL OpenType driver while processing a corrupted OTF font file, see below: --- DRIVERPAGEFAULTBEYONDENDOFALLOCATION d6 N bytes of memory was allocated and more than N bytes are being referenced. This cannot be protected by try-except. When...

9.3CVSS5.9AI score0.36366EPSS
Exploits5
0day.today
0day.today
added 2015/08/21 12:0 a.m.74 views

Windows ATMFD.DLL Out-of-Bounds Read Due to Malformed Name INDEX in the CFF Table Exploit

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=386&can=1 We have encountered a number of Windows kernel crashes in the ATMFD.DLL OpenType driver while processing corrupted OTF font files, such as: ---...

9.3CVSS0.36366EPSS
Exploits5
RedHat Linux
RedHat Linux
added 2006/03/15 2:5 p.m.2 views

security flaw

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...

7.5CVSS5.8AI score0.0337EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2005/10/05 12:2 p.m.3 views

security flaw

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...

7.5CVSS5.8AI score0.0337EPSS
Exploits1References4
Rows per page
Query Builder