CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34111 matches found

RedhatCVE•added 2026/03/26 2:58 p.m.•6 views

CVE-2026-4181

A security flaw has been discovered in D-Link DIR-816 1.10CNB05. This affects an unknown function of the file /goform/form2RepeaterStep2.cgi of the component goahead. The manipulation of the argument key1/key2/key3/key4/pskValue results in stack-based buffer overflow. The attack may be launched...

10CVSS7.9AI score0.01184EPSS

Exploits1References1

RedhatCVE•added 2026/03/26 2:58 p.m.•3 views

CVE-2026-4172

A vulnerability was detected in TRENDnet TEW-632BRP 1.010B32. This affects an unknown part of the file /pingresponse.cgi of the component HTTP POST Request Handler. The manipulation of the argument pingipaddr results in stack-based buffer overflow. The attack may be performed from remote. The...

8.6CVSS7.7AI score0.00612EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 2:58 p.m.•4 views

CVE-2026-4567

A vulnerability has been found in Tenda A15 15.13.07.13. The impacted element is the function UploadCfg of the file /cgi-bin/UploadCfg. The manipulation of the argument File leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public an...

10CVSS8AI score0.03688EPSS

Exploits1References1

OSV•added 2026/03/26 2:36 p.m.•3 views

CVE-2026-23995 EVerest has stack buffer overflow in ifreq.ifr_name when interface name exceeds IFNAMSIZ

EVerest is an EV charging software stack. Prior to version 2026.02.0, stack-based buffer overflow in CAN interface initialization: passing an interface name longer than IFNAMSIZ 16 to CAN open routines overflows ifreq.ifrname, corrupting adjacent stack data and enabling potential code execution. ...

8.4CVSS6.3AI score0.00211EPSS

Exploits1References3

CVE•added 2026/03/26 2:36 p.m.•12 views

CVE-2026-23995

EVerest has a stack-based buffer overflow in the CAN interface initialization. If a CAN interface name exceeds IFNAMSIZ (16), touching CAN open routines overflows the stack via ifreq.ifr_name, potentially leading to code execution. This affects versions prior to 2026.02.0; the patch is included i...

8.4CVSS6.3AI score0.00211EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/03/26 2:31 p.m.•22 views

CVE-2026-22790 EVerest's unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payload

EVerest is an EV charging software stack. Prior to version 2026.02.0, HomeplugMessage::setuppayload trusts len after an assert; in release builds the check is removed, so oversized SLAC payloads are memcpy'd into a 1497-byte stack buffer, corrupting the stack and enabling remote code execution fr...

8.8CVSS0.00526EPSS

Exploits1References1

Vulnrichment•added 2026/03/26 2:31 p.m.•4 views

CVE-2026-22790 EVerest's unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payload

8.8CVSS6.5AI score0.00526EPSS

Exploits1References1

EUVD•added 2026/03/26 2:31 p.m.•2 views

EUVD-2026-16197

8.8CVSS6.5AI score0.00526EPSS

Exploits1References1

CVE•added 2026/03/26 2:31 p.m.•12 views

CVE-2026-22790

EV charging stack EVerest is vulnerable before 2026.02.0: HomeplugMessage::setup_payload trusts len after an assert; in release builds the check is removed, enabling oversized SLAC payloads to be memcpy’d into a ~1497-byte stack buffer, corrupting the stack and allowing remote code execution from...

8.8CVSS6.5AI score0.00526EPSS

Exploits1References1Affected Software1

OSV•added 2026/03/26 2:31 p.m.•3 views

CVE-2026-22790 EVerest's unchecked SLAC payload length causes stack overflow in HomeplugMessage::setup_payload

8.8CVSS6.5AI score0.00526EPSS

Exploits1References3

Vulnrichment•added 2026/03/26 1:49 p.m.•1 views

CVE-2026-22593 EVerest has off-by-one stack buffer overflow in IsoMux certificate filename parsing

EVerest is an EV charging software stack. Prior to version 2026.02.0, an off-by-one check in IsoMux certificate filename handling causes a stack-based buffer overflow when a filename length equals MAXFILENAMELENGTH 100. A crafted filename in the certificate directory can overflow filenamesidx,...

8.4CVSS6.3AI score0.00138EPSS

Exploits1References1

EUVD•added 2026/03/26 1:49 p.m.•1 views

EUVD-2026-16173

8.4CVSS6.3AI score0.00138EPSS

Exploits1References1

Cvelist•added 2026/03/26 1:49 p.m.•19 views

CVE-2026-22593 EVerest has off-by-one stack buffer overflow in IsoMux certificate filename parsing

8.4CVSS0.00138EPSS

Exploits1References1

OSV•added 2026/03/26 1:49 p.m.•4 views

CVE-2026-22593 EVerest has off-by-one stack buffer overflow in IsoMux certificate filename parsing

8.4CVSS6.3AI score0.00138EPSS

Exploits1References3

EUVD•added 2026/03/26 9:30 a.m.•3 views

EUVD-2026-16132

Each RPCSECGSS data packet is validated by a routine which checks a signature in the packet. This routine copies a portion of the packet into a stack buffer, but fails to ensure that the buffer is sufficiently large, and a malicious client can trigger a stack overflow. Notably, this does not...

8.8CVSS6.8AI score0.01915EPSS

Exploits3References2

Cvelist•added 2026/03/26 8:18 a.m.•27 views

CVE-2026-4861 Wavlink WL-NU516U1 nas.cgi ftext stack-based overflow

A weakness has been identified in Wavlink WL-NU516U1 260227. This vulnerability affects the function ftext of the file /cgi-bin/nas.cgi. This manipulation of the argument Content-Length causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available t...

9CVSS0.0085EPSS

Exploits1References4

CVE•added 2026/03/26 8:18 a.m.•11 views

CVE-2026-4861

CVE-2026-4861 affects Wavlink WL-NU516U1 (260227) via the /cgi-bin/nas.cgi, function ftext. The issue arises from manipulating the Content-Length argument, triggering a stack-based buffer overflow. Exploitation is remote and public, with a proof-of-concept in CVSS data. Impact indicators show hig...

9CVSS8AI score0.0085EPSS

Exploits1References4Affected Software1