CVE-2024-28038

The web interface of the affected devices processes a cookie value improperly, leading to a stack buffer overflow. More precisely, giving too long character string to MFPSESSIONID parameter results in a stack buffer overflow. As for the details of affected product names, model numbers, and...

CVE-2024-11498

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

CVE-2024-11498 Resource exhaustion via Stack overflow in libjxl

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

CVE-2024-11498

CVE-2024-11498 affects the libjxl (JPEG XL) library. A crafted file can trigger a stack-based overflow, causing the decoder to allocate large stack space (up to 256–512 MB) and potentially exhaust stack memory, leading to denial of service. Multiple advisories and deployable updates reference thi...

CVE-2024-11498

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...

IrfanView 安全漏洞

IrfanView is an image viewer. It supports image browsing, image editing, image format conversion and so on. A buffer overflow remote code execution vulnerability exists in the IrfanView WBZ plugin WB1 Stack File Parsing, which is caused by failing to properly validate the length of user-supplied...

Trimble SketchUp 安全漏洞

Trimble SketchUp is a suite of 3D modeling programs for architects, urban planners, producers, game developers, and related professionals from Trimble USA. Trimble SketchUp suffers from a security vulnerability that stems from a stack-based buffer overflow issue contained in SKP file parsing. An...

Luxion KeyShot 安全漏洞

Luxion KeyShot is a software for designing photos of 3D scenes from Luxion, USA. The software allows real-time 3D rendering workflows to display results immediately and reduce the time required to create photorealistic product photos. A security vulnerability exists in Luxion KeyShot that stems...

The vulnerability in the l2tp.cgi script of NETGEAR R7000P router software allows a hacker to induce a service failure.

The vulnerability of the l2tp.cgi script in the NETGEAR R7000P router’s microprogramming system is related to buffer overflows in the stack when processing the l2tpusernetmask parameter. Exploiting this vulnerability allows a malicious actor to cause service failure by sending a specially crafted...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to buffer overflow in the stack, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Siemens Tecnomatix Plant Simulation Stack Buffer Overflow Vulnerability (CNVD-2024-45987)

Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. Using the function of discrete event simulation for production volume analysis and optimization, and thus improve the manufacturing system performance. A stack buffer overflow vulnerability exists in Siemen...

PT-2024-17040 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

The vulnerability of the opennurbs.dll and ODXSW_DLL.dll libraries, which are software components for modeling, design, and drafting in AutoCAD, allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the opennurbs.dll and ODXSWDLL.dll libraries, which are software for modeling, design, and drafting in AutoCAD, is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, execute...

SourceCodester Student Record Management System 安全漏洞

SourceCodester Student Record Management System is an open source student record management system from SourceCodester. A security vulnerability exists in SourceCodester Student Record Management System version 1.0. An attacker exploiting this vulnerability could cause a stack-based buffer overfl...

The vulnerability of the Windows Kernel component of the Microsoft operating system allows attackers to increase their privileges.

The vulnerability of the Windows Kernel component of the Microsoft operating system is related to buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to gain increased privileges...

PT-2025-23037

Name of the Vulnerable Software and Affected Versions icu affected versions not specified Debian Linux affected versions not specified Description A stack buffer overflow issue was discovered in the International Components for Unicode ICU. The issue occurs when running the genrb binary, causing...

Delta Electronics DIAScreen DPA File Parsing Stack Buffer Overflow Vulnerability

Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in Taiwan, China. A stack buffer overflow vulnerability exists in the Delta Electronics DIAScreen DPA file parsing, which can be exploited by an attacker to execute arbitrary code...

Delta Electronics DIAScreen DPA File Parsing Stack Buffer Overflow Vulnerability (CNVD-2025-01799)

Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in Taiwan, China. A stack buffer overflow vulnerability exists in the Delta Electronics DIAScreen DPA file parsing, which can be exploited by an attacker to execute arbitrary code...

Delta Electronics DIAScreen 安全漏洞

Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in Taiwan, China. A stack buffer overflow vulnerability exists in the Delta Electronics DIAScreen DPA file parsing, which can be exploited by an attacker to execute arbitrary code...

PT-2024-32883 · Ivanti · Ivanti Connect Secure

Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions prior to 22.7R2.3 Description: A stack-based buffer overflow in IPsec allows a remote unauthenticated attacker to cause a denial of service. Recommendations: For versions prior to 22.7R2.3, update to version...