CVE-2024-29158

HDF5 through 1.14.3 contains a stack buffer overflow in H5FLarrmalloc, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

TOTOLINK A3700R Stack Buffer Overflow Vulnerability

The TOTOLINK A3700R is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK A3700R suffers from a stack buffer overflow vulnerability that originates from the ssid in the function setWiFiGuestCfg failing to properly validate the length and size of the input data, which can be...

LibRaw security update

An update is available for LibRaw. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list LibRaw is a library for reading RAW files obtained from digital photo cameras...

TRENDnet TEW-814DAP 安全漏洞

The TRENDnet TEW-814DAP is a wireless access point from TRENDnet. The TRENDnet TEW-814DAP suffers from a stack buffer overflow vulnerability that stems from the submit-url parameter at /formSysLog failing to properly validate the length of the input data, which could be exploited by an attacker t...

Rocky Linux 8 : LibRaw (RLSA-2024:2994)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:2994 advisory. LibRaw: stack buffer overflow in LibRawbufferdatastream::gets in src/librawdatastream.cpp CVE-2021-32142 Tenable has extracted the preceding description block...

PT-2024-4151 · Fortinet · Fortios

Name of the Vulnerable Software and Affected Versions: Fortinet FortiOS versions 6.0.13 through 6.0.18 Fortinet FortiOS versions 6.2.9 through 6.2.16 Fortinet FortiOS versions 6.4.6 through 6.4.15 Fortinet FortiOS versions 7.0.0 through 7.0.12 Fortinet FortiOS versions 7.2.0 through 7.2.7 Fortine...

PT-2024-22621 · Unknown · Microdicom Dicom Viewer

Name of the Vulnerable Software and Affected Versions: MicroDicom DICOM Viewer affected versions not specified Description: The issue is related to a stack-based buffer overflow that could allow an attacker to execute arbitrary code on affected installations. User interaction is required for...

CVE-2022-37020 HP PC BIOS May 2024 Security Updates for Potential Stack Buffer Overflows

Potential vulnerabilities have been identified in the system BIOS for certain HP PC products, which might allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerabilities...

RHEL 7 : procps (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - procps-ng, procps: process hiding through race condition enumerating /proc CVE-2018-1121 - procps-ng befo...

RHEL 9 : gcc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 - binutils...

RHEL 5 : flac (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - flac: Heap buffer write overflow in readresidualpartitionedrice CVE-2014-9028 - Stack-based buffer overfl...

RHEL 5 : sqlite (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sqlite: stack buffer overflow in src/printf.c CVE-2015-3416 - chromium-browser: pointer disclosure in...

RHEL 9 : gsl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gsl: Stack buffer overflow in gslstatsquantilefromsorteddata CVE-2020-35357 Note that Nessus has not tested for thi...

RHEL 7 : openjpeg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - OpenJPEG 1.5.1 allows remote...

RHEL 6 : openjpeg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - Heap-based buffer overflow...

RHEL 8 : opensc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opensc: Stack buffer overflow issues in various places CVE-2021-42782 - A heap double free issue was foun...

Stack buffer overflow vulnerability in libigl readOFF.cpp function

libigl is libigl open source a simple C++ geometry processing library . A stack buffer overflow vulnerability exists in the libigl readOFF.cpp function. The vulnerability is caused by incorrect boundary checking of the readOFF function. An attacker can exploit this vulnerability to cause a buffer...

CVE-2024-35333

A stack-buffer-overflow vulnerability exists in the readcharsetdecl function of html2xhtml 1.3. This vulnerability occurs due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this vulnerability by providing a specially crafted input to the...

CVE-2024-35333

A stack-buffer-overflow vulnerability exists in the readcharsetdecl function of html2xhtml 1.3. This vulnerability occurs due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this vulnerability by providing a specially crafted input to the...

CVE-2024-35333

CVE-2024-35333 affects html2xhtml version 1.3, specifically the read_charset_decl function. The root cause is improper bounds checking when copying data into a fixed-size stack buffer, allowing a stack-based overflow. Reported impact includes arbitrary code execution, denial of service, or data c...