Lucene search
K

13311 matches found

NVD
NVD
added 2024/04/11 6:15 p.m.15 views

CVE-2024-30273

Illustrator versions 28.3, 27.9.2 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.0036EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/11 12:0 a.m.6 views

PT-2024-23312 · Adobe · Illustrator

Name of the Vulnerable Software and Affected Versions: Adobe Illustrator versions 28.3, 27.9.2 and earlier Description: The issue is a Stack-based Buffer Overflow that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction...

7.8CVSS7.6AI score0.0036EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/04/11 12:0 a.m.24 views

Juniper Junos OS Vulnerability (JSA79110)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA79110 advisory. - An Out-of-bounds Read vulnerability in the advanced forwarding management process aftman of Juniper Networks Junos OS on MX Series with MPC10E, MPC11, MX10K-LC9600 line...

8.2CVSS6.2AI score0.00581EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/04/10 1:2 p.m.31 views

CVE-2024-20772 Adobe Media Encoder 2024 AI file parsing Stack based buffer overflow

Media Encoder versions 24.2.1, 23.6.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS8AI score0.00612EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/10 10:15 a.m.13 views

CVE-2023-2794 Ofono: sms decoder stack-based buffer overflow remote code execution vulnerability within the decode_deliver() function

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodedeliver function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check f...

8.1CVSS7.1AI score0.0124EPSS
Exploits1References1
Veracode
Veracode
added 2024/04/10 5:59 a.m.16 views

Buffer Overflow

org.apfloat:apfloat is vulnerable to Stack-based Buffer Overflow. The vulnerability is due to improper input validation within the org.apfloat.internal.DoubleModMath::modPow method, which can result in Denial of Service if an attacker can input arbitrary values to the method...

7.1AI score0.00839EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/04/09 3:15 p.m.20 views

CVE-2023-49910

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

8.8CVSS7.4AI score0.01822EPSS
Exploits1References2
NVD
NVD
added 2024/04/09 3:15 p.m.27 views

CVE-2023-49907

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

8.8CVSS7.4AI score0.01822EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/04/09 2:12 p.m.23 views

CVE-2023-49909

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.9AI score0.01822EPSS
Exploits1References1
CVE
CVE
added 2024/04/09 2:12 p.m.71 views

CVE-2023-49909

Talos reports a stack-based buffer overflow in Tp-Link AC1350 (EAP225 V3) Web UI, specifically in the Radio Scheduling endpoint. The vulnerability (CVE-2023-49909) is triggered by crafted POST requests to /data/scheduler.association.json with operation not equal to read or load (commonly operatio...

8.8CVSS7.8AI score0.01822EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/04/09 2:12 p.m.24 views

CVE-2023-49910

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.6AI score0.01822EPSS
Exploits1References1
CVE
CVE
added 2024/04/09 2:12 p.m.62 views

CVE-2023-49907

Talos-1888 details a stack-based buffer overflow in TP-Link AC1350 (EAP225 V3) firmware v5.1.0 Build 20220926, caused by the handling of newline-delimited POST parameters (ssid, band, profile, action) in /data/scheduler.association.json. Specifically, the vulnerability arises from unsafe copying ...

8.8CVSS7.8AI score0.01822EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2024/04/09 2:12 p.m.62 views

CVE-2023-49911

Talos details CVE-2023-49911 in Tp-Link AC1350 (EAP225 V3) and EAP115 (v5.x) web interfaces. The flaw is a stack-based buffer overflow in the Radio Scheduling endpoint exposed via POST /data/scheduler.association.json. In the vulnerable code path, postScheAssocSsidDataJson routes requests with op...

8.8CVSS7.8AI score0.01822EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/04/09 2:12 p.m.21 views

CVE-2023-49913

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.6AI score0.01919EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/04/09 2:12 p.m.24 views

CVE-2023-49911

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.9AI score0.01822EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/04/09 2:12 p.m.24 views

CVE-2023-49907

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.9AI score0.01822EPSS
Exploits1References1
CVE
CVE
added 2024/04/09 2:12 p.m.63 views

CVE-2023-49912

CVE-2023-49912 describes a stack-based buffer overflow in the TP-Link AC1350 series (EAP225 V3) and EAP115 web interfaces, exposed through the Radio Scheduling feature. The vulnerability exists in the POST endpoint /data/scheduler.association.json, where an authenticated HTTP request with a craft...

8.8CVSS7.8AI score0.01822EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/04/09 2:12 p.m.26 views

CVE-2023-49911

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.6AI score0.01822EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/04/09 2:12 p.m.28 views

CVE-2023-49907

A stack-based buffer overflow vulnerability exists in the web interface Radio Scheduling functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 v5.1.0 Build 20220926. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can make an...

7.2CVSS7.6AI score0.01822EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/04/09 12:0 a.m.5 views

TP-LINK AC1350 缓冲区错误漏洞

The TP-LINK AC1350 is a router from China P&L TP-LINK. A security vulnerability exists in the TP-LINK AC1350 that stems from a stack-based buffer overflow vulnerability in the radio scheduling feature of the web interface. An attacker exploiting this vulnerability could cause remote code executio...

8.8CVSS8.4AI score0.01822EPSS
Exploits1References3
Rows per page
Query Builder