Lucene search
K

34183 matches found

CVE
CVE
added 2026/03/04 12:0 a.m.13 views

CVE-2025-70223

CVE-2025-70223 affects D-Link DIR-513 v1.10. The issue is a stack buffer overflow in the curTime parameter to goform/formAdvNetwork, with CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (base 9.8). The vulnerability is network‑level, requires no privileges and no user interaction, and impacts confi...

9.8CVSS6.1AI score0.00513EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/04 12:0 a.m.20 views

CVE-2025-70225

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curtime parameter to the goform/formEasySetupWWConfig component...

0.00485EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/04 12:0 a.m.4 views

CVE-2025-70223

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork...

9.8CVSS6.1AI score0.00513EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.5 views

PT-2026-23061

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin...

6.1AI score0.00485EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.6 views

D-Link DIR-513 安全漏洞

The D-Link DIR-513 is a wireless router product from the D-Link company. The D-Link DIR-513 v1.10 version has a security vulnerability, which stems from a stack buffer overflow in the curTime parameter of the goform/formEasySetupWizard module...

9.8CVSS6AI score0.00485EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/04 12:0 a.m.5 views

CVE-2025-70220

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAutoDetecWANwizard4...

9.8CVSS6.1AI score0.00605EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.4 views

D-Link DIR-513 安全漏洞

The D-Link DIR-513 is a wireless router product from the D-Link company. The D-Link DIR-513 v1.10 version has a security vulnerability, which stems from a stack buffer overflow in the goform/formDeviceReboot function...

9.8CVSS6AI score0.00485EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.6 views

Multer 安全漏洞

Multer is an open-source middleware for Node.js developed by ExpressJS. Versions of Multer prior to 2.1.1 contained a security vulnerability caused by a stack overflow issue when handling malformed requests, which could lead to a denial-of-service attack...

8.7CVSS5.9AI score0.00713EPSS
Exploits0References5
OSV
OSV
added 2026/03/03 11:15 p.m.3 views

DEBIAN-CVE-2026-27601

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

5.9CVSS6AI score0.00612EPSS
Exploits1References1
NVD
NVD
added 2026/03/03 11:15 p.m.4 views

CVE-2026-27601

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS0.00612EPSS
Exploits1References3
OSV
OSV
added 2026/03/03 11:15 p.m.7 views

AZL-79401 CVE-2026-27601 affecting package python-sphinx 4.4.0-3

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.8AI score0.00612EPSS
Exploits1References1
OSV
OSV
added 2026/03/03 11:15 p.m.6 views

AZL-79323 CVE-2026-27601 affecting package cyrus-sasl-bootstrap 2.1.28-4

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.8AI score0.00612EPSS
Exploits1References1
OSV
OSV
added 2026/03/03 11:15 p.m.6 views

AZL-79397 CVE-2026-27601 affecting package krb5 1.21.3-3

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.8AI score0.00612EPSS
Exploits1References1
OSV
OSV
added 2026/03/03 11:15 p.m.6 views

AZL-79427 CVE-2026-27601 affecting package numpy 1.26.3-4

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.8AI score0.00612EPSS
Exploits1References1
OSV
OSV
added 2026/03/03 11:15 p.m.3 views

AZL-79340 CVE-2026-27601 affecting package cyrus-sasl 2.1.28-8

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.8AI score0.00612EPSS
Exploits1References1
OSV
OSV
added 2026/03/03 11:15 p.m.5 views

AZL-79320 CVE-2026-27601 affecting package cyrus-sasl 2.1.28-4

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.8AI score0.00612EPSS
Exploits1References1
OSV
OSV
added 2026/03/03 11:15 p.m.8 views

AZL-79404 CVE-2026-27601 affecting package python-sqlalchemy 1.4.32-2

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS6.4AI score0.00612EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/03 11:15 p.m.5 views

CVE-2026-27601

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS5.9AI score0.00612EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/03/03 10:38 p.m.5 views

CVE-2026-27601

Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under very specific conditions, detailed below, an attacker could exploit this in a Denial of Service DoS attack by triggering a stack overflow...

8.2CVSS6.1AI score0.00612EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/03/03 10:38 p.m.79 views

CVE-2026-27601

CVE-2026-27601 affects Underscore.js prior to 1.13.8. The vulnerability arises when _.flatten or _.isEqual recursively processes deeply nested, untrusted input without a depth limit, enabling a Denial of Service via stack overflow under specific data structures (e.g., inputs created via JSON.pars...

8.2CVSS6.1AI score0.00612EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder