CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 4 days ago•24 views

CVE-2026-51846

In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer overflow vulnerability that can lead to remote arbitrary code execution...

Cvelist•added 4 days ago•26 views

CVE-2026-51845

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the mac parameter...

Cvelist•added 4 days ago•28 views

CVE-2026-51844

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the cloneType parameter...

EUVD•added 4 days ago•6 views

EUVD-2026-38051

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the mac parameter...

6.2AI score

EUVD•added 4 days ago•6 views

EUVD-2026-38049

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the wanMTU parameter...

6.2AI score

OSV•added 5 days ago•6 views

DEBIAN-CVE-2026-43994

Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.10.0 contain a stack buffer overflow in decodeoauthtokengcm. A uint16t noncelen field read from an attacker-supplied OAuth access token 0-65535 is passed directly to memcpy as the copy length into a 256-byte...

8.1CVSS6.1AI score0.0006EPSS

NVD•added 5 days ago•8 views

CVE-2026-43994

8.1CVSS0.0006EPSS

Exploits0References2

CVE•added 5 days ago•13 views

CVE-2026-43994

CVE-2026-43994 – Coturn: A stack buffer overflow exists in decode_oauth_token_gcm() for versions prior to 4.10.0. A uint16_t nonce_len read from an attacker-controlled OAuth token is passed to memcpy() to copy into a 256-byte buffer without bounds checking, allowing up to 735 bytes of data to ove...

8.1CVSS5.6AI score0.0006EPSS

Exploits0References2

Cvelist•added 5 days ago•13 views

CVE-2026-43994 Coturn: Stack buffer overflow in decode_oauth_token_gcm()

8.1CVSS0.0006EPSS

Exploits0References2

Tenable Nessus•added 5 days ago•6 views

AlmaLinux 8 : xorg-x11-server-Xwayland (ALSA-2026:26562)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:26562 advisory. xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch...

7.8CVSS6.2AI score0.00222EPSS

Exploits0References11

Tenable Nessus•added 5 days ago•5 views

RHEL 8 : xorg-x11-server-Xwayland (RHSA-2026:26562)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:26562 advisory. Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server:...

7.8CVSS6.2AI score0.00222EPSS

Exploits0References20

Tenable Nessus•added 5 days ago•2 views

Siemens RuggedCom Rox Out-of-bounds Write (CVE-2019-13106)

Das U-Boot versions 2016.09 through 2019.07-rc4 can memset too much data while reading a crafted ext4 filesystem, which results in a stack buffer overflow and likely code execution. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

8.3CVSS7AI score0.0175EPSS

Tenable Nessus•added 5 days ago•7 views

Siemens RuggedCom Rox Uncontrolled Recursion (CVE-2025-9714)

Uncontrolled recursion inXPath evaluationin libxml2 up to and including version 2.9.14 allows a local attacker to cause a stack overflow via crafted expressions. XPath processing functions xmlXPathRunEval, xmlXPathCtxtCompile, and xmlXPathEvalExpr were resetting recursion depth to zero before...

6.2CVSS6.2AI score0.00144EPSS

RedHat Linux•added 6 days ago•7 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. XkbSetMapChecks declares a fixed-size stack buffer mapWidths256 indexed by key type index. The helper function CheckKeyTypes writes to this buffer at a client-controlled offset, allowing a stack buffer overflow. This...

7.8CVSS5.9AI score0.00222EPSS

RedHat Linux•added 6 days ago•4 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. The X server has multiple stack buffers sized XkbMaxShiftLevel XkbNumKbdGroups but CheckKeyTypes does not verify or clamp non-canonical key types to XkbMaxShiftLevel. A client can change key types to excessive shift...

7.8CVSS5.7AI score0.00222EPSS

RedHat Linux•added 6 days ago•7 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

7.8CVSS5.8AI score0.00222EPSS

RedHat Linux•added 6 days ago•6 views

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels

7.8CVSS5.6AI score0.00222EPSS

NVD•added 6 days ago•6 views

CVE-2026-55738

A stack-based buffer overflow exists in the rawtoheader function in src/microtar.c in rxi microtar 0.1.0. The function copies the 100-byte name and linkname fields of a TAR header with strcpy without guaranteeing null termination of the source. The POSIX ustar format permits these fixed-width...

8.8CVSS0.00635EPSS

Cvelist•added 6 days ago•26 views

CVE-2026-55738 Stack Buffer Overflow in rxi/microtar raw_to_header() via non-null-terminated TAR name field

8.8CVSS0.00635EPSS