Lucene search
K

13311 matches found

CVE
CVE
added 2024/05/03 1:57 a.m.61 views

CVE-2023-35731

CVE-2023-35731 affects D-Link DAP-2622 routers; the vulnerability is in the DDP service where improper validation of user-supplied data length allows a stack-based buffer overflow. This enables remote code execution with root privileges from network-adjacent access and requires no authentication....

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 1:57 a.m.72 views

CVE-2023-35729

The CVE-2023-35729 issue affects D-Link DAP-2622 firmware, with a stack-based buffer overflow in the DDP service caused by insufficient validation of user-supplied data length. This allows network-adjacent attackers to execute arbitrary code with root privileges without authentication. Documented...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 1:57 a.m.64 views

CVE-2023-35728

CVE-2023-35728 affects D-Link DAP-2622 routers. The root cause is a stack-based buffer overflow in the DDP service caused by inadequate validation of user-supplied data length before copying to a fixed-length stack buffer. This leads to remote code execution in the root context with network-adjac...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 1:57 a.m.19 views

CVE-2023-35728 D-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

8.8CVSS8.8AI score0.00855EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 1:57 a.m.21 views

CVE-2023-35728 D-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-2622 DDP Reboot Auth Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

8.8CVSS9.2AI score0.00855EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 1:57 a.m.60 views

CVE-2023-35725

CVE-2023-35725 affects D-Link DAP-2622 devices via a stack-based buffer overflow in the DDP service. The vulnerability arises from improper validation of user-supplied data length before copying to a fixed-length stack buffer, enabling network-adjacent attackers to execute code with root privileg...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 1:57 a.m.60 views

CVE-2023-35718

CVE-2023-35718 affects D-Link DAP-2622 via the DDP service. The flaw is a stack-based buffer overflow caused by improper validation of the length of user-supplied data before copying to a fixed-length buffer, enabling code execution with root privileges. Public sources (including ZDI advisory and...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 1:57 a.m.10 views

CVE-2023-34306 Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. User interaction is required to exploit this vulnerability in that the...

7.8CVSS8AI score0.00897EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 1:57 a.m.19 views

CVE-2023-34306 Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Ashlar-Vellum Graphite VC6 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. User interaction is required to exploit this vulnerability in that the...

7.8CVSS8.3AI score0.00897EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 1:57 a.m.39 views

CVE-2023-34306

Ashlar-Vellum Graphite VC6 file parsing vulnerability enables stack-based buffer overflow leading to remote code execution. Root cause: improper validation of the length of user-supplied data prior to copying it to a stack-based buffer while parsing VC6 files. Attack requires user interaction (ta...

8.8CVSS8AI score0.00897EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/05/03 1:57 a.m.55 views

CVE-2023-34302

CVE-2023-34302 describes a stack-based buffer overflow in Ashlar-Vellum Cobalt’s CO file parsing. The flaw stems from insufficient validation of the length of user-supplied data before copying it to a stack-based buffer, enabling a remote attacker to execute arbitrary code in the current process ...

7.8CVSS8AI score0.00392EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 1:57 a.m.19 views

CVE-2023-34302 Ashlar-Vellum Cobalt CO File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt CO File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the targ...

7.8CVSS8AI score0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 1:57 a.m.28 views

CVE-2023-34287 Ashlar-Vellum Cobalt CO File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt CO File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the targ...

7.8CVSS8.3AI score0.00404EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 1:57 a.m.17 views

CVE-2023-34287 Ashlar-Vellum Cobalt CO File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt CO File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the targ...

7.8CVSS8AI score0.00404EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 1:56 a.m.17 views

CVE-2023-32149 D-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-2640 prog.cgi Request Handling Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640 routers. Authentication is not required to exploit this...

8.8CVSS9.1AI score0.0124EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 1:56 a.m.25 views

CVE-2023-32146 D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. T...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 1:56 a.m.18 views

CVE-2023-32142 D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.2AI score0.01101EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 1:56 a.m.70 views

CVE-2023-32141

The CVE-2023-32141 issue affects D-Link DAP-1360 devices, where an unvalidated length when handling /cgi-bin/webproc requests (getpage/errorpage) causes a stack-based buffer overflow. This leads to remote code execution with root privileges by a network-adjacent attacker, without authentication. ...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 1:56 a.m.19 views

CVE-2023-32136 D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

8.8CVSS9.2AI score0.01155EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 1:56 a.m.61 views

CVE-2023-27361

Summary: CVE-2023-27361 affects NETGEAR RAX30 with a JSON parsing vulnerability in the rex_cgi component, causing a stack-based buffer overflow that can lead to remote code execution in the context of root. The flaw stems from insufficient validation of user-supplied JSON data length before copyi...

8CVSS7.2AI score0.00856EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder