Fatek FvDesigner Stack Buffer Overflow Vulnerability

Fatek FvDesigner is a software tool for designing and developing projects for the FATEK FV HMI series. A stack buffer overflow vulnerability exists in Fatek FvDesigner 1.5.76 and earlier versions when processing project files. An attacker could exploit this vulnerability to execute arbitrary code...

OSV-2021-435 Stack-buffer-overflow in ot::Cli::Interpreter::OutputFormatV

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31232 Crash type: Stack-buffer-overflow READ Crash state: ot::Cli::Interpreter::OutputFormatV ot::Cli::Interpreter::OutputLine ot::Cli::Interpreter::HandleDnsServiceResponse...

Stack overflow

Stack buffer overflow in GPU Process in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

CVE-2021-21149

Stack buffer overflow in Data Transfer in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page...

OSV-2021-430 Stack-buffer-overflow in tvb_memcpy

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31198 Crash type: Stack-buffer-overflow WRITE Crash state: tvbmemcpy compositememcpy tvbgetnstringz...

Backdoor.Win32.Ketch.h Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/63c55ad21e0771c7f9ca71ec3bfcea0f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Ketch.h Vulnerability: Remote Stack Buffer Overflow SEH Description: Ketch makes HTTP...

CVE-2020-2501 Stack Buffer Overflow in Surveillance Station

A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploited, this vulnerability allows attackers to execute arbitrary code. QNAP have already fixed this vulnerability in the following versions: Surveillance Station 5.1.5.4.3...

CVE-2020-24870

A stack buffer overflow vulnerability was found in LibRaw. This flaw allows a malicious user to send a crafted image that, when parsed by an application linked to LibRaw, leads to a denial of service or potential code execution...

OSV-2021-386 Stack-buffer-overflow in ot::Coap::Message::AppendUintOption

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30831 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::Coap::Message::AppendUintOption ot::Coap::Message::AppendBlockOption otCoapMessageAppendBlock2Option...

CVE-2021-20236

A flaw was found in the ZeroMQ server. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

OSV-2021-361 Stack-buffer-overflow in add_file

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30774 Crash type: Stack-buffer-overflow WRITE Crash state: addfile strfilenamecb handleoption...

Gitea 1.9.0 < 1.13.2 DoS Vulnerability

Gitea is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

Arbitrary Code Execution

connman is vulnerable to arbitrary code execution. The vulnerability exists through a stack buffer overflow that can be used to execute code by network adjacent attackers...

Integer overflow

An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::loadimage function at line: const sizet buffersize = tgaheader.imagewidth tgaheader.imageheight pixelsize; The bug leads to...

CVE-2021-26825

An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::loadimage function at line: const sizet buffersize = tgaheader.imagewidth tgaheader.imageheight pixelsize; The bug leads to...

CVE-2021-26825

An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::loadimage function at line: const sizet buffersize = tgaheader.imagewidth tgaheader.imageheight pixelsize; The bug leads to...

CVE-2021-26825

CVE-2021-26825 affects Godot Engine up to v3.2. The vulnerability is in ImageLoaderTGA::load_image(), where the buffer_size is computed as (tga_header.image_width * tga_header.image_height) * pixel_size, causing a dynamic stack buffer overflow. Impact: potential code execution and/or crash, with ...

OSV-2021-304 Stack-buffer-overflow in processClientServerHello

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30393 Crash type: Stack-buffer-overflow WRITE 6 Crash state: processClientServerHello processTLSBlock ndpisearchtlstcp...

Gitea Stack Buffer Overflow Vulnerability

Gitea is an open source community-driven clone of Gogs, a lightweight code hosting solution with a backend written in Go under the MIT license. A stack buffer overflow vulnerability exists in gitea versions 1.9.0 through 1.13.1. A remote attacker can exploit this vulnerability to cause a denial o...

Fortinet FortiWeb Stack Buffer Overflow Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...