CVE-2025-8653 Kenwood DMX958XR JKRadioService Stack-based Buffer Overflow Remote Code Execution Vulnerability

Kenwood DMX958XR JKRadioService Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Kenwood DMX958XR. Authentication is not required to exploit this vulnerability. The specific...

Linux Distros Unpatched Vulnerability : CVE-2025-3196

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. Affected is the function...

CVE-2014-125122

A stack-based buffer overflow vulnerability exists in the tmUnblock.cgi endpoint of the Linksys WRT120N wireless router. The vulnerability is triggered by sending a specially crafted HTTP POST request with an overly long TMBlockURL parameter to the endpoint. By exploiting this flaw, an...

CVE-2013-10057

Synactis PDF In-The-Box ActiveX control (PDF_IN_1.ocx) contains a stack-based buffer overflow in the ConnectToSynactis method. A long string passed to populate ldCmdLine for WinExec can overwrite a saved TRegistry pointer on the stack, enabling remote code execution when a user visits a malicious...

CVE-2025-8472 Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the...

(0Day) (Pwn2Own) Alpine iLX-507 vCard Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. User interaction is required to exploit this vulnerability in that the target must connect to a malicious Bluetooth device. The specific flaw exists within the parsi...

CVE-2014-125122

CVE-2014-125122 affects Linksys WRT120N: a stack-based buffer overflow in the tmUnblock.cgi endpoint, triggered by a specially crafted POST with an overly long TM_Block_URL, allows an unauthenticated attacker to overwrite memory and temporarily reset the admin password to blank, gaining access to...

CVE-2013-10036 Beetel Connection Manager NetConfig.ini Stack-Based Buffer Overflow

A stack-based buffer overflow vulnerability exists in Beetel Connection Manager version PCWBTLINDV1.0.0B04 when parsing the UserName parameter in the NetConfig.ini configuration file. A crafted .ini file containing an overly long UserName value can overwrite the Structured Exception Handler SEH,...

CVE-2025-33092

IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

CVE-2025-33092 IBM Db2 for Linux code execution

IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

PT-2025-31248 · Ibm · Ibm Db2 For Linux

Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux versions 12.1.0 through 12.1.2 Description: IBM Db2 for Linux is susceptible to a stack-based buffer overflow within the db2fm component. This issue stems from inadequate bounds checking, potentially allowing a local user to...

CVE-2025-8184

A vulnerability was found in D-Link DIR-513 up to 1.10 and classified as critical. This issue affects the function formSetWanL2TPcallback of the file /goform/formSetWanL2TPtriggers of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be...

CVE-2025-8159

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...

CVE-2025-8131

A vulnerability was found in Tenda AC20 16.03.08.05. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to stack-based buffer overflow. The attack can be launched remotely...

CVE-2025-8184 D-Link DIR-513 HTTP POST Request formSetWanL2TPtriggers formSetWanL2TPcallback stack-based overflow

A vulnerability was found in D-Link DIR-513 up to 1.10 and classified as critical. This issue affects the function formSetWanL2TPcallback of the file /goform/formSetWanL2TPtriggers of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack may be...

CVE-2025-8184

D-Link DIR-513 (versions up to 1.10) is affected by CVE-2025-8184. The stack-based buffer overflow occurs in the formSetWanL2TPcallback function within /goform/formSetWanL2TPtriggers of the HTTP POST Request Handler. It is remotely exploitable and has been disclosed publicly. Several sources desc...

CVE-2014-125117

CVE-2014-125117 : A stack-based buffer overflow in the my_cgi.cgi component of certain D‑Link devices, including DSP‑W215 v1.02, can be triggered by a crafted HTTP POST to /common/info.cgi, enabling unauthenticated remote code execution with system‑level privileges. Exploitation details indicate ...

CVE-2025-8159 D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...

CVE-2025-8159

CVE-2025-8159 affects D-Link DIR-513 (firmware 1.0). The vulnerability is in the HTTP POST Request Handler, specifically the formLanguageChange function in /goform/formLanguageChange. Manipulating the curTime argument triggers a stack-based buffer overflow, with remote exploitation possible. The ...

CVE-2025-8159 D-Link DIR-513 HTTP POST Request formLanguageChange stack-based overflow

A vulnerability was found in D-Link DIR-513 1.0. It has been rated as critical. This issue affects the function formLanguageChange of the file /goform/formLanguageChange of the component HTTP POST Request Handler. The manipulation of the argument curTime leads to stack-based buffer overflow. The...