Lucene search
K

43 matches found

EUVD
EUVD
added 2025/12/02 3:30 p.m.5 views

EUVD-2025-200234

Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'ShowDownload' function uses “sprintf” to format a string that includes the user-controlled input of 'GetParametermeter' in the fixed-size buffer 'acStack4c' 64 bytes without checking the length. An attacker c...

8.5CVSS6.8AI score0.0035EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.12 views

PT-2025-48674

Name of the Vulnerable Software and Affected Versions Circutor SGE-PLC1000/SGE-PLC50 version 9.0.2 Description A stack-based buffer overflow exists in Circutor SGE-PLC1000/SGE-PLC50 version 9.0.2. The ShowMeterDatabase function copies user-controlled input into a fixed-size buffer using sprintf...

9.8CVSS7.1AI score0.00344EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21237

Malware in sbrugna...

5.3CVSS5.6AI score0.00854EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-30629

Malicious code in bioql PyPI...

9.8CVSS7.3AI score0.03114EPSS
Exploits1References2
GithubExploit
GithubExploit
added 2025/08/19 7:30 a.m.64 views

DLINK-DIR600LAx-Vulnerability

DLINK-DIR600LAx-Vulnerability - 01: - 02: - 03: - 04: - 0...

5.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/11/27 12:0 a.m.6 views

The vulnerability of the sprintf() function in Linux operating system kernels, which allows a hacker to cause a service failure

The vulnerability of the sprintf function in Linux operating system kernels is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00236EPSS
Exploits0References27Affected Software10
CNNVD
CNNVD
added 2024/08/27 12:0 a.m.4 views

D-Link多款产品 命令注入漏洞

D-Link DNS-320 and others are products of China-based AUO D-Link.D-Link DNS-320 is a NAS Network Attached Storage device.D-Link DNS-120 is a network storage adapter.D-Link DNS-315L is a network attached storage. A command injection vulnerability exists in various D-Link products. The vulnerabilit...

9.8CVSS7AI score0.07482EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2024/02/09 12:0 a.m.6 views

The vulnerability of the sprintf function in D-LINK GO-RT-AC750 router software allows a hacker to execute arbitrary commands.

The vulnerability of the sprintf function in D-LINK GO-RT-AC750 router microprogramming software is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

10CVSS8.3AI score0.00986EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/07/06 12:0 a.m.4 views

Milesight UR32L 缓冲区错误漏洞

The Milesight UR32L is a 4G industrial router from China-based Milesight. A security vulnerability exists in the Milesight UR32L version v32.3.0.5, which stems from the use of an insecure sprintf pattern. An attacker could exploit the vulnerability to cause a buffer overflow via a specially craft...

7.2CVSS7.4AI score0.0146EPSS
Exploits1References3
0day.today
0day.today
added 2023/06/17 12:0 a.m.345 views

TP-Link Archer AX10(EU)_V1.2_230220 Buffer Overflow Vulnerability

Exploit Title: Buffer Overflow in TP-Link Archer AX10EUV1.2230220 Exploit Author: Giuseppe Compare CVE: CVE-2023-34832 Vendor Homepage: https://www.tp-link.com/ Version: TP-Link Archer AX10EUV1.2230220 Buffer Overflow There is a buffer overflow in the FUN131e8 function due to using sprintf...

9.8CVSS7.1AI score0.01666EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.7 views

The vulnerability of the sprintf function in the GNU C library (glibc) allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sprintf function in the GNU C library glibc is caused by buffer overflow. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

10CVSS7.9AI score0.01423EPSS
Exploits1References5Affected Software2
SUSE CVE
SUSE CVE
added 2023/02/15 5:54 a.m.4 views

SUSE CVE-2011-0524

Multiple buffer overflows in the NMEA parser nmea-gen.c in gypsy 0.8 allow local users to cause a denial of service crash via unspecified vectors related to the sprintf function...

2.1CVSS6.8AI score0.00411EPSS
Exploits0References3
OSV
OSV
added 2022/09/07 5:15 p.m.4 views

CVE-2022-36587

In Tenda G3 USG3V3.0brV15.11.0.67663ENTDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary...

9.8CVSS6.1AI score0.00814EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/07 4:31 p.m.4 views

CVE-2022-36587

In Tenda G3 USG3V3.0brV15.11.0.67663ENTDE, there is a buffer overflow vulnerability caused by sprintf in function in the httpd binary...

9.8AI score0.00814EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/07/04 12:0 a.m.9 views

The vulnerability in the implementation of the sprintf() function in the microprogramming software for DIR-890L A1 allows a hacker to execute arbitrary code.

The vulnerability of the sprintf function implementation in the microprogramming-based router software DIR-890L A1 is related to incorrect checking of string lengths in HTTP headers. Exploiting this vulnerability could allow an attacker to execute arbitrary code by connecting through port 49152...

6.3CVSS7.4AI score0.13638EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/04/27 4:15 p.m.29 views

CVE-2021-34587

In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...

5.3CVSS0.00854EPSS
Exploits0References1
OSV
OSV
added 2022/04/27 4:15 p.m.5 views

CVE-2021-34587

In Bender/ebee Charge Controllers in multiple versions a long URL could lead to webserver crash. The URL is used as input of an sprintf to a stack variable...

5.3CVSS5.8AI score0.00854EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/11 11:25 p.m.33 views

CVE-2019-5177

An exploitable stack buffer overflow vulnerability vulnerability exists in the iocheckd service ‘I/O-Check’ functionality of WAGO PFC 200 Firmware version 03.02.0214. The destination buffer sp+0x440 is overflowed with the call to sprintf for any domainname values that are greater than...

6.3AI score0.00457EPSS
Exploits1References1
CVE
CVE
added 2020/01/06 7:10 p.m.169 views

CVE-2020-5204

CVE-2020-5204 affects uftpd prior to 2.11. A buffer overflow exists in FTP PORT parsing (ftpcmd.c handle_PORT) where a 16-byte buffer can overflow when filling input with a format string like %d.%d.%d.%d using user input. The root cause is sprintf-based population of the IPv4-like string exceedin...

8.8CVSS7.8AI score0.01079EPSS
Exploits0References3Affected Software1
Packet Storm
Packet Storm
added 2014/09/24 12:0 a.m.45 views

Advantech WebAccess dvs.ocx GetColor Buffer Overflow

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Advantech WebAccess dvs.ocx GetColor Buffer Overflow', 'Description' = %q This module exploits a buffer overflow vulnerability in...

7.5CVSS1.5AI score0.61384EPSS
Exploits6
Rows per page
Query Builder