Lucene search
K

7128 matches found

Vulnrichment
Vulnrichment
added 2026/05/30 2:55 p.m.11 views

CVE-2018-25426 WinMTR 0.91 Denial of Service via Buffer Overflow

WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buffer of repeated characters. Attackers can create a specially crafted input file with 238 bytes of data to trigger a buffer overflow...

8.7CVSS6AI score0.00514EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/05/30 12:0 a.m.18 views

PT-2026-45100

A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keyword list/keyword causes stack-based buffer overflow. The attack is possible to be carried out remotely. The explo...

9CVSS6.2AI score0.00447EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/29 7:58 p.m.8 views

CVE-2026-46384

iskorotkov/avro is a fast Go Avro codec. Prior to 2.33.0, several Avro decoder paths read attacker-controlled 64-bit values from the wire format and either narrowed them to platform-sized int before bounds-checking, or summed them with overflow-prone signed-int arithmetic. On 32-bit targets...

8.7CVSS5.9AI score0.00397EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.19 views

PT-2026-44340

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An integer overflow exists in the DRM AMD GPU VCN4 module. This issue occurs during the message bound check, where an incorrect condition allows for an overflow to happen. Recommendation...

9.8CVSS6AI score0.03663EPSS
Exploits17References283
EUVD
EUVD
added 2026/05/27 4:31 p.m.12 views

EUVD-2026-32581

go-ipld-prime is an implementation of the InterPlanetary Linked Data IPLD spec interfaces, a batteries-included codec implementations of IPLD for CBOR and JSON, and tooling for basic operations on IPLD objects. Prior to 0.23.0, the DAG-CBOR and DAG-JSON decoders recurse on each nested map or list...

6.2CVSS5.9AI score0.0012EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.9 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.216 contained a buffer overflow vulnerability. This vulnerability stemmed from out-of-bounds read operations within the ANGLE library, which could allow remote attackers to extract sensitive...

6.5CVSS6.1AI score0.00238EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/26 8:14 p.m.13 views

CVE-2026-9382

A flaw has been found in Edimax BR-6675nD 1.12. Affected by this issue is the function formPPTPSetup of the file /goform/formPPTPSetup of the component POST Request Handler. Executing a manipulation of the argument pptpUserName can lead to buffer overflow. The attack may be launched remotely. The...

9CVSS7.8AI score0.00542EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/26 2:30 p.m.13 views

corosync: Corosync: Denial of Service via integer overflow in join message validation

A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol UDP packets. This can cause the service to crash, leading to a denial of service. This vulnerability...

7.5CVSS5.8AI score0.00994EPSS
Exploits1References5
Oracle linux
Oracle linux
added 2026/05/26 12:0 a.m.40 views

dnsmasq security update

2.79-36 - Prevent overflow in extractname function CVE-2026-2291 - Prevent DoS in DNSSEC validation CVE-2026-4890 - Prevent out-of-bounds read in DNSSEC validation CVE-2026-4891 - Prevent out-of-bounds write in DHCPv6 server CVE-2026-4892 - Prevent source check avoidance by RFC 7871 client-subnet...

8.4CVSS5.9AI score0.07237EPSS
Exploits3
OSV
OSV
added 2026/05/25 2:1 p.m.6 views

SUSE-SU-2026:2053-1 Security update for busybox

This update for busybox fixes the following issue - CVE-2026-29004: Heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c bsc1263989...

8.8CVSS6AI score0.00375EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.20 views

PT-2026-43130

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompress R2004 section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available...

5.3CVSS6AI score0.00154EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.14 views

PT-2026-43220

NASA openVSP 3.16.1 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the geometry name field. Attackers can trigger a denial of service by pasting a 5000-byte payload into the name input field within the Geom...

6.9CVSS6AI score0.00168EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/23 6:30 p.m.12 views

EUVD-2018-21868

10-Strike Network Inventory Explorer 8.54 contains a stack-based buffer overflow vulnerability in the registration key input field that allows local attackers to execute arbitrary code by triggering a structured exception handler overwrite. Attackers can craft a malicious registration key string...

8.6CVSS6.7AI score0.00162EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

A heap buffer overflow in the Mojom IDL of Google Chrome prior to version 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.6AI score0.18457EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.17 views

PT-2026-42184

Name of the Vulnerable Software and Affected Versions EPSON L14150 FL27PB affected versions not specified Description A buffer overflow exists in the RAW Printing Service JetDirect on TCP port 9100. This flaw allows a remote attacker to execute arbitrary code. A buffer overflow occurs when a...

7.8CVSS6.5AI score0.00648EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.11 views

Escargot 缓冲区错误漏洞

Escargot is a lightweight JavaScript engine developed by Samsung for use in resource-constrained embedded devices. Escargot has a buffer overflow vulnerability, which stems from out-of-buffer writes, potentially leading to buffer overflows...

7.8CVSS6.1AI score0.00287EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/18 12:30 a.m.8 views

CVE-2026-8775

A flaw has been found in Edimax BR-6428NS 1.10. This affects the function formL2TPSetup of the file /goform/formL2TPSetup of the component POST Request Handler. This manipulation of the argument L2TPUserName causes buffer overflow. It is possible to initiate the attack remotely. The exploit has...

9CVSS6.1AI score0.00573EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.13 views

PT-2026-41549

Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a text file with a specially crafted buffer containing shellcode and SEH...

8.6CVSS6.4AI score0.00138EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/15 1:53 a.m.49 views

CVE-2025-29944

A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash...

6.8CVSS0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/14 11:39 a.m.12 views

CVE-2026-8295

A flaw was found in simdjson, a JSON parsing library. An integer overflow vulnerability in the document-builder API, specifically within the stringbuilder::escapeandappend function, can occur when processing very large input strings on systems with limited sizet width, such as 32-bit builds. This...

6.9CVSS5.9AI score0.00279EPSS
Exploits0References5
Rows per page
Query Builder