Lucene search
K

34202 matches found

SUSE Linux
SUSE Linux
added 2026/02/17 4:38 p.m.6 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS5.5AI score0.00755EPSS
Exploits3References32
OSV
OSV
added 2026/02/17 4:38 p.m.4 views

SUSE-SU-2026:0570-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

6.2CVSS5.5AI score0.00755EPSS
Exploits3References17
SUSE Linux
SUSE Linux
added 2026/02/17 12:26 p.m.6 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS5.3AI score0.00755EPSS
Exploits2References26
OSV
OSV
added 2026/02/17 12:26 p.m.4 views

SUSE-SU-2026:0568-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

6.2CVSS5.9AI score0.00755EPSS
Exploits2References14
RedHat Linux
RedHat Linux
added 2026/02/17 9:33 a.m.3 views

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

7.5CVSS5.8AI score0.00624EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/17 9:33 a.m.1 views

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

7.5CVSS5.8AI score0.00624EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/17 9:32 a.m.3 views

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

7.5CVSS5.8AI score0.00624EPSS
Exploits0References5
ICS
ICS
added 2026/02/17 7:0 a.m.6 views

Delta Electronics ASDA-Soft

RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker to write arbitrary data beyond the bounds of a stack-allocated buffer, leading to the corruption of a structured exception handler SEH. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

9.8CVSS6.3AI score0.00532EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2026/02/17 1:5 a.m.4 views

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

7.5CVSS5.8AI score0.00624EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/17 12:48 a.m.3 views

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

7.5CVSS7AI score0.00624EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/17 12:0 a.m.5 views

CVE-2026-26732

TOTOLINK A3002RU V2.1.1-B20211108.1455 was discovered to contain a stack-based buffer overflow via the vpnUser or vpnPassword parameters in the formFilter function...

6AI score0.00327EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/17 12:0 a.m.4 views

CVE-2026-26736

TOTOLINK A3002RUV3 V3.0.0-B20220304.1804 was discovered to contain a stack-based buffer overflow via the staticipv6 parameter in the formIpv6Setup function...

6.1AI score0.00489EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/17 12:0 a.m.4 views

CVE-2026-26732

TOTOLINK A3002RU V2.1.1-B20211108.1455 was discovered to contain a stack-based buffer overflow via the vpnUser or vpnPassword parameters in the formFilter function...

6.1AI score0.00327EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/02/17 12:0 a.m.25 views

CVE-2026-26731

TOTOLINK A3002RU V2.1.1-B20211108.1455 was discovered to contain a stack-based buffer overflow via the routernamerparameter in the formDnsv6 function...

0.0048EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/17 12:0 a.m.5 views

TOTOLINK A3002RU 缓冲区错误漏洞

TOTOLINK A3002RU is a wireless router product from TOTOLINK Corporation. The TOTOLINK A3002RU V2.1.1-B20211108.1455 version contains a buffer error vulnerability. This vulnerability stems from a stack buffer overflow in the routername parameter of the formDnsv6 function, which may allow for the...

8.8CVSS6.3AI score0.0048EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.7 views

PT-2026-20357

Name of the Vulnerable Software and Affected Versions TOTOLINK A3002RU version 2.1.1-B20211108.1455 Description A stack-based buffer overflow exists due to the routernamer parameter within the formDnsv6 function. The issue is present in TOTOLINK A3002RU version 2.1.1-B20211108.1455. The vulnerabl...

8.8CVSS6.2AI score0.0048EPSS
Exploits1References10
CVE
CVE
added 2026/02/17 12:0 a.m.10 views

CVE-2026-26731

TOTOLINK A3002RU (V2.1.1-B20211108.1455) contains a stack-based buffer overflow in the routernamer parameter of the formDnsv6 function. Affects TOTOLINK A3002RU; impact described as potential arbitrary code execution. A PoC exists per Threat/Exploit data, and remediation guidance from PT Security...

8.8CVSS6AI score0.0048EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.11 views

PT-2026-20358

Name of the Vulnerable Software and Affected Versions TOTOLINK A3002RU version 2.1.1-B20211108.1455 Description The TOTOLINK A3002RU router firmware contains a stack-based buffer overflow. The issue is located in the formFilter function and is triggered through the vpnUser and vpnPassword...

8.8CVSS6.1AI score0.00327EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2026/02/17 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2026-59fdfa64f5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS5.5AI score0.00421EPSS
Exploits1References3
OSV
OSV
added 2026/02/16 6:19 p.m.4 views

CVE-2026-2567

A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the function sub401218 of the file /cgi-bin/nas.cgi. Performing a manipulation of the argument User1Passwd results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now publi...

8.6CVSS6.5AI score0.00662EPSS
Exploits1References4
Rows per page
Query Builder