libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

Moderate: Red Hat Security Advisory: icu security update

An update for icu is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

...

Tenda AC8V4 Buffer Overflow Vulnerability (CNVD-2025-17346)

The Tenda AC8V4 is a wireless router from Tenda China. Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow in the time parameter in /goform/saveParentControlInfo, no detailed vulnerability details are available at this time...

Moderate: icu security update

The International Components for Unicode ICU library provides robust and full-featured Unicode services. Security Fixes: icu: Stack buffer overflow in the SRBRoot::addTag function CVE-2025-5222 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and...

RHEL 9 : icu (RHSA-2025:12083)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:12083 advisory. The International Components for Unicode ICU library provides robust and full-featured Unicode services. Security Fixes: icu: Stack buffer overflow ...

SonicWall Secure Mobile Access < 10.2.2.1-90sv (SNWLID-2025-0012)

The version of SonicWall Secure Mobile Access installed on the remote host is prior to 10.2.2.1-90sv. It is, therefore, affected by multiple vulnerabilities as referenced in the SNWLID-2025-0012 advisory: - A Reflected cross-site scripting XSS vulnerability exists in the SMA100 series web...

NewStart CGSL MAIN 7.02 : gstreamer1-plugins-base Multiple Vulnerabilities (NS-SA-2025-0175)

The remote NewStart CGSL host, running version MAIN 7.02, has gstreamer1-plugins-base packages installed that are affected by multiple vulnerabilities: - GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function...

CBL Mariner 2.0 Security Update: luajit / sysbench (CVE-2024-25176)

The version of luajit / sysbench installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25176 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in...

Azure Linux 3.0 Security Update: luajit / sysbench (CVE-2024-25176)

The version of luajit / sysbench installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25176 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in...

Tenda AC8V4 安全漏洞

The Tenda AC8V4 is a wireless router from Tenda China. Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow in the time parameter in /goform/saveParentControlInfo, no detailed vulnerability details are available at this time...

PT-2025-31749

Name of the Vulnerable Software and Affected Versions NVIDIA vGPU software for Linux-style hypervisors affected versions not specified Description NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU Manager that could allow a malicious guest to cause a sta...

CVE-2025-40596

CVE-2025-40596 affects SonicWall SMA100 series Web Interface: a stack-based buffer overflow in the SMA100 web UI can be triggered remotely (no auth) and may cause DoS or, per the description, potentially enable code execution. The available sources confirm the vulnerability class and impact vecto...

Tenda AC500 Stack Buffer Overflow Vulnerability

Tenda AC500 is a wireless controller device from Tenda, designed for small and medium-sized businesses, supporting cross-VLAN management of wireless networks. Tenda AC500 has a stack buffer overflow vulnerability, which originates from the parameter radio2g1 in the file /goform/setWtpData fails t...

Adobe Illustrator Stack Buffer Overflow Vulnerability

Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A stack buffer overflow vulnerability exists in Adobe Illustrator, which can be exploited by an attacker to execute arbitrary code in the context of the current user...

CVE-2025-7909

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. Affected by this issue is the function sprintf of the file /goform/formLanSetupRouterSettings of the component Boa Webserver. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack m...

CVE-2025-7795

A vulnerability, which was classified as critical, has been found in Tenda FH451 1.0.0.9. Affected by this issue is the function fromP2pListFilter of the file /goform/P2pListFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be launched remotely. Th...

CVE-2025-7794

A vulnerability classified as critical was found in Tenda FH451 1.0.0.9. Affected by this vulnerability is the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be launched remotely. The...

Tenda Ax1803 Stack Buffer Overflow Vulnerability

Tenda Ax1803 is a firmware product from Tenda that provides a range of features for network device setup and management. Users can use Tenda Ax1803 Firmware to perform network configuration, manage routers and other operations in a convenient and practical way. A stack buffer overflow vulnerabili...

The vulnerability of the microprogrammed display software of the KVM switch ATEN CL5708IM lies in buffer overflow in the stack. This allows a malicious actor to execute arbitrary code and cause malfunctions during maintenance operations.

The vulnerability of the KVM switch display microprogramming system of ATEN CL5708IM is related to buffer overflow in the stack when processing HTTP GET/POST parameters. Exploiting this vulnerability allows an attacker to execute arbitrary code and cause service failures...