CVE-2026-37231

FlexRIC v2.0.0 uses a uint16t counter for xappid assignment but stores the value in uint32t message fields. After 65,530+ E42SETUPREQUESTs, the 16-bit counter wraps around and produces duplicate xappids. The iApp port 36422 crashes when attempting to register a duplicate ID in its internal data...

CVE-2026-31425

The CVE-2026-31425 issue concerns a Linux kernel RDS path (rds_ib_get_mr/rds_ib_post_reg_frmr) where FRWR/memory registration could dereference a NULL i_cm_id/qp on outgoing connections before rdma_cm_id is established. Connected docs confirm the vulnerability is addressed by patches in several d...

CVE-2019-25711

SpotFTP Password Recover 2.4.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an oversized buffer in the Name field during registration. Attackers can generate a 256-byte payload, paste it into the Name input field, and trigger a crash...

CVE-2019-25711

CVE-2019-25711 affects SpotFTP Password Recover 2.4.2. The vulnerability is a local, denial-of-service condition caused by accepting an oversized input in the Name field during registration, with a crafted 256-byte payload that crashes the application on submission. Public references (e.g., Explo...

PT-2026-32173

SpotFTP Password Recover 2.4.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an oversized buffer in the Name field during registration. Attackers can generate a 256-byte payload, paste it into the Name input field, and trigger a crash...

CVE-2019-25596

SpotAuditor 5.2.6 contains a denial of service vulnerability in the registration dialog that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a buffer of 300 repeated characters into the Name input during registration t...

CVE-2019-25599 Backup Key Recovery 2.2.4 Denial of Service via Name Field

Backup Key Recovery 2.2.4 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a buffer of 300 or more characters into the Name field during registration to trigger a crash wh...

CVE-2019-25599

Backup Key Recovery 2.2.4 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a buffer of 300 or more characters into the Name field during registration to trigger a crash wh...

CVE-2019-25559 SpotPaltalk 1.1.5 Name/Key Field Denial of Service

SpotPaltalk 1.1.5 contains a denial of service vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can paste a buffer of 1000 characters into the Name/Key field during registration to trigger a...

PT-2026-26904

SpotPaltalk 1.1.5 contains a denial of service vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can paste a buffer of 1000 characters into the Name/Key field during registration to trigger a...

CVE-2020-37185

Backup Key Recovery 2.2.5 contains a denial-of-service vulnerability triggered by overflowing the Name input during registration with a 1000-character payload, causing the application to crash. Affected component: registration name field. Root cause: input length overflow. Impact: DoS (availabili...

CVE-2022-42306

An issue was discovered in Veritas NetBackup through 8.2 and related Veritas products. An attacker with local access can send a crafted packet to pbxexchange during registration and cause a NULL pointer exception, effectively crashing the pbxexchange process...

PT-2025-3347 · Open5Gs · Open5Gs

Name of the Vulnerable Software and Affected Versions: Open5gs version 2.7.2 Description: A problem was discovered in Open5gs where the InitialUEMessage, a registration request sent at a specific time, can cause AMF to crash due to incorrect error handling of the gmm state exception function when...

Veritas NetBackup 代码问题漏洞

Veritas NetBackup is a storage service from Veritas that is used to provide backup and recovery capabilities for enterprise environments. Veritas NetBackup 8.2 and prior versions contain a denial-of-service vulnerability that could be exploited by an attacker with local access to send a construct...

CVE-2021-27722

An issue was discovered in Nsasoft US LLC SpotAuditor 5.3.5. The program can be crashed by entering 300 bytes char data into the "Key" or "Name" field while registering...

TaskCanvas 1.4.0 - Registration Denial Of Service

TaskCanvas 1.4.0 - Registration Denial Of Service Exploit Title: TaskCanvas 1.4.0 - 'Registration' Denial Of Service Exploit Author : Ismail Tasdelen Exploit Date: 2020-01-06 Vendor Homepage : https://www.digitalvolcano.co.uk/ Link Software : https://www.digitalvolcano.co.uk/taskcanvasdownload.ht...