EUVD-2025-204025

Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication...

CVE-2025-47372

CVE-2025-47372 is a memory corruption issue affecting Qualcomm Snapdragon components where reading a corrupted ELF image with an oversized file size into a buffer without authentication can overflow memory. The Red Hat/NVD/CVE lists and connected documents describe a local attack vector due to in...

GO-2025-3811 File Browser's Uncontrolled Memory Consumption vulnerability can enable DoS attack due to oversized file processing in github.com/filebrowser/filebrowser

File Browser's Uncontrolled Memory Consumption vulnerability can enable DoS attack due to oversized file processing in github.com/filebrowser/filebrowser...

AZL-57083 CVE-2025-26618 affecting package erlang for versions less than 26.2.5.9-1

Erlang is a programming language and runtime system for building massively scalable soft real-time systems with requirements on high availability. OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang. Packet si...

kernel: NFSD: Fix ia_size underflow

A vulnerability was found in the Linux kernel's NFSD, where an underflow in the iasize field can occur due to incorrect handling of file size types. When an NFS client sends a file size greater than the maximum value the system can handle, it can lead to an underflow in the iasize variable, causi...

Apple iOS和Apple iPadOS 输入验证错误漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. An input validation error vulnerability exists in Apple iOS and Apple iPadOS, which arises from insufficient validation of...

Denial of Service Vulnerability in ZTE ZXR10 1800-2S (CNVD-2020-23632)

The ZTE ZXR10 1800-2S is a multi-service smart router manufactured by ZTE Corporation. A denial of service vulnerability exists in the ZTE ZXR10 1800-2S. An attacker interrupts the terminal after downloading an oversized version of a file via FTP, which leads to a command conflict on the target...

UBUNTU-CVE-2013-7338

Python before 3.3.4 RC1 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a file size value larger than the size of the zip file to the 1 ZipExtFile.read, 2 ZipExtFile.readn, 3 ZipExtFile.readlines, 4 ZipFile.extract, or 5 ZipFile.extractall function...

WinMount buffer overflow

Buffer overflow on oversized file names inside archive...

GnuPG buffer overflow

Buffer overflow on oversized file name...

BlenderPlayer buffer overflow

Buffer overflow on oversized .blen file...

vxTftpSrv TFTP server for Pocket PC buffer overflow

Buffer overflow on oversized file name...

WinHex editor buffer overflow

Buffer overflow on oversized file name...

Crystal FTP Pro buffer overflow

Buffer overflow on oversized file extension in directory listing...

WinRAR buffer overflow

Stack overflow on oversized file extention during extraction...