Siemens Tecnomatix Plant Simulation Stack Buffer Overflow Vulnerability (CNVD-2024-45987)

Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. Using the function of discrete event simulation for production volume analysis and optimization, and thus improve the manufacturing system performance. A stack buffer overflow vulnerability exists in Siemen...

PT-2024-17040 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

The vulnerability of the opennurbs.dll and ODXSW_DLL.dll libraries, which are software components for modeling, design, and drafting in AutoCAD, allows a malicious individual to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the opennurbs.dll and ODXSWDLL.dll libraries, which are software for modeling, design, and drafting in AutoCAD, is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, execute...

The vulnerability of the Windows Kernel component of the Microsoft operating system allows attackers to increase their privileges.

The vulnerability of the Windows Kernel component of the Microsoft operating system is related to buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to gain increased privileges...

SourceCodester Student Record Management System 安全漏洞

SourceCodester Student Record Management System is an open source student record management system from SourceCodester. A security vulnerability exists in SourceCodester Student Record Management System version 1.0. An attacker exploiting this vulnerability could cause a stack-based buffer overfl...

PT-2025-23037

Name of the Vulnerable Software and Affected Versions icu affected versions not specified Debian Linux affected versions not specified Description A stack buffer overflow issue was discovered in the International Components for Unicode ICU. The issue occurs when running the genrb binary, causing...

Delta Electronics DIAScreen DPA File Parsing Stack Buffer Overflow Vulnerability (CNVD-2025-01799)

Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in Taiwan, China. A stack buffer overflow vulnerability exists in the Delta Electronics DIAScreen DPA file parsing, which can be exploited by an attacker to execute arbitrary code...

Delta Electronics DIAScreen DPA File Parsing Stack Buffer Overflow Vulnerability

Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in Taiwan, China. A stack buffer overflow vulnerability exists in the Delta Electronics DIAScreen DPA file parsing, which can be exploited by an attacker to execute arbitrary code...

The vulnerability of the dbsrv_asp function in the /dbsrv.asp file of the D-Link DI-8003 device’s microprogramming software allows a hacker to execute arbitrary commands.

The vulnerability of the dbsrvasp function in the /dbsrv.asp file of the D-Link DI-8003 device’s microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely by injecting a specially crafted comma...

Delta Electronics DIAScreen 安全漏洞

Delta Electronics DIAScreen is an intelligent desktop builder from Delta Electronics in Taiwan, China. A stack buffer overflow vulnerability exists in the Delta Electronics DIAScreen DPA file parsing, which can be exploited by an attacker to execute arbitrary code...

PT-2024-32883 · Ivanti · Ivanti Connect Secure

Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions prior to 22.7R2.3 Description: A stack-based buffer overflow in IPsec allows a remote unauthenticated attacker to cause a denial of service. Recommendations: For versions prior to 22.7R2.3, update to version...

OESA-2024-2363 dcraw security update

This package contains dcraw, a command line tool to decode raw image data downloaded from digital cameras. Security Fixes: CVE-2017-13735 CVE-2017-14608 A stack-based buffer overflow in the findgreen function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remot...

OSV-2022-1288 Stack-buffer-overflow in bool SmilesParseOps::parser::parse_atom_props<std::__1::__wrap_iter<char const*>

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=376787368 Crash type: Stack-buffer-overflow READ 1 Crash state: bool SmilesParseOps::parser::parseatomprops bool SmilesParseOps::parser::parseit SmilesParseOps::parseCXExtensions...

OSV-2024-1261 Stack-buffer-overflow in _pcre2_compile_class_not_nested_16

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=376515526 Crash type: Stack-buffer-overflow WRITE 2 Crash state: pcre2compileclassnotnested16 compileclassoperand pcre2compileclassnested16...

The vulnerability in the /cgi-bin/ipfedr.cgi web interface of DrayTek Vigor software allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the /cgi-bin/ipfedr.cgi web interface of the DrayTek Vigor router software lies in buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure by sending a specially crafted HTTP request...

The vulnerability of the formSetRebootTimer function (/goform/SetSysAutoRebbotCfg) in the Tenda AC8 router’s microprogramming system allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the compareparentcontroltime function /goform/saveParentControlInfo in the Tenda AC8 router’s microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

Fortinet Fortigate Stack-based buffer overflows in diagnostic CLI commands (FG-IR-21-179)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-179 advisory. - A stack-based buffer overflow vulnerability CWE-121 in the command line interpreter of FortiOS before 7.0.4 and FortiProxy...

Fortinet FortiWeb Multiple stack-based buffer overflow vulnerabilities in CLI command (FG-IR-20-206)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-20-206 advisory. - A stack-based buffer overflow in Fortinet FortiWeb version 6.3.14 and below, 6.2.4 and below allows attacker to execute...

CVE-2024-40494

Buffer Overflow in coapmsg.c in FreeCoAP allows remote attackers to execute arbitrary code or cause a denial of service stack buffer overflow via a crafted packet...

PT-2024-28877 · Freecoap · Freecoap

Name of the Vulnerable Software and Affected Versions: FreeCoAP affected versions not specified Description: The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted packet, resulting in a stack buffer overflow in the coap msg.c file. Recommendations:...