CVE-2025-2619 D-Link DAP-1620 Cookie storage check_dws_cookie stack-based overflow

A vulnerability, which was classified as critical, was found in D-Link DAP-1620 1.03. This affects the function checkdwscookie of the file /storage of the component Cookie Handler. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit h...

CVE-2025-29121

A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fastsettingwifiset file formfastsettingwifiset. Using the timeZone parameter causes a stack-based buffer overflow...

CVE-2025-30472

CVE-2025-30472 is a vulnerability in the Corosync library (through 3.1.9) that enables a stack-based buffer overflow when encryption is disabled or the attacker knows the key and processes a large UDP packet. Connected sources specify affected contexts (Corosync 3.1.x) and note fixes: IBM/Db2 bul...

CVE-2024-13903 quickjs-ng QuickJS qjs quickjs.c JS_GetRuntime stack-based overflow

A vulnerability was found in quickjs-ng QuickJS up to 0.8.0. It has been declared as problematic. Affected by this vulnerability is the function JSGetRuntime of the file quickjs.c of the component qjs. The manipulation leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2024-13903 quickjs-ng QuickJS qjs quickjs.c JS_GetRuntime stack-based overflow

A vulnerability was found in quickjs-ng QuickJS up to 0.8.0. It has been declared as problematic. Affected by this vulnerability is the function JSGetRuntime of the file quickjs.c of the component qjs. The manipulation leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2024-13903

CVE-2024-13903 affects quickjs-ng QuickJS up to 0.8.0. The vulnerability targets the JS_GetRuntime function in quickjs.c (component qjs), enabling a stack-based buffer overflow. The issue can be exploited remotely. Upgrade to version 0.9.0 to address the vulnerability; the patch is identified by ...

CVE-2025-26336

Dell Chassis Management Controller Firmware for Dell PowerEdge FX2, versions prior to 2.40.200.202101130302, and Dell Chassis Management Controller Firmware for Dell PowerEdge VRTX versions prior to 3.41.200.202209300499, contains a Stack-based Buffer Overflow vulnerability. An unauthenticated...

CVE-2025-26336

Dell Chassis Management Controller Firmware for Dell PowerEdge FX2, versions prior to 2.40.200.202101130302, and Dell Chassis Management Controller Firmware for Dell PowerEdge VRTX versions prior to 3.41.200.202209300499, contains a Stack-based Buffer Overflow vulnerability. An unauthenticated...

CVE-2025-26336

Dell Chassis Management Controller Firmware for Dell PowerEdge FX2, versions prior to 2.40.200.202101130302, and Dell Chassis Management Controller Firmware for Dell PowerEdge VRTX versions prior to 3.41.200.202209300499, contains a Stack-based Buffer Overflow vulnerability. An unauthenticated...

RHEL 6 / 7 : ruby193-ruby (RHSA-2014:1913)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1913 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

CVE-2025-29121

A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fastsettingwifiset file formfastsettingwifiset. Using the timeZone parameter causes a stack-based buffer overflow...

Azure Linux 3.0 Security Update: binutils (CVE-2025-0840)

The version of binutils installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0840 advisory. - A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects th...

CVE-2025-29121

A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fastsettingwifiset file formfastsettingwifiset. Using the timeZone parameter causes a stack-based buffer overflow...

Azure Linux 3.0 Security Update: libxml2 (CVE-2025-24928)

The version of libxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-24928 advisory. - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in...

CVE-2025-29121

CVE-2025-29121 affects Tenda AC6 (V15.03.05.16). The vulnerability arises in the /goform/fast_setting_wifi_set form (form_fast_setting_wifi_set) when the timeZone parameter is processed, causing a stack-based buffer overflow. This is documented across multiple sources (NVD, Red Hat, CNVD/CNNVD va...

CVE-2025-2370

A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...

Exploit for Out-of-bounds Write in Tenda Ac9_Firmware

CVE-2025-29384 Proof-of-Concept Exploit Overview This repo...

Progress Software Kemp LoadMaster mangle Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software Kemp LoadMaster. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mangle executable. The issue results from the lack of proper...

CVE-2025-2370

A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...

CVE-2025-2369

A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been classified as critical. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument admpass leads to stack-based buffer overflow. It is possible to launch the atta...