Lucene search
K

74118 matches found

Vulnrichment
Vulnrichment
added 2026/04/06 9:30 p.m.2 views

CVE-2026-5685 Tenda CX12L addressNat fromAddressNat stack-based overflow

A vulnerability was identified in Tenda CX12L 16.03.53.12. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be used...

9CVSS6.4AI score0.00694EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/06 9:30 p.m.6 views

CVE-2026-5685

A vulnerability was identified in Tenda CX12L 16.03.53.12. This affects the function fromAddressNat of the file /goform/addressNat. The manipulation of the argument page leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit is publicly available and might be used...

9CVSS7.9AI score0.00694EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/04/06 9:16 p.m.6 views

CVE-2026-5683

A vulnerability was found in Tenda CX12L 16.03.53.12. Affected by this vulnerability is the function fromP2pListFilter of the file /goform/P2pListFilter. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack must originate from the local network. The...

8CVSS0.00619EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/04/06 9:15 p.m.22 views

CVE-2026-5684 Tenda CX12L webExcptypemanFilter fromwebExcptypemanFilter stack-based overflow

A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack requires access to the local...

8.6CVSS0.00618EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/04/06 9:15 p.m.3 views

CVE-2026-5684 Tenda CX12L webExcptypemanFilter fromwebExcptypemanFilter stack-based overflow

A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack requires access to the local...

8.6CVSS7.7AI score0.00618EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/06 9:15 p.m.3 views

CVE-2026-5684

A vulnerability was determined in Tenda CX12L 16.03.53.12. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. Executing a manipulation of the argument page can lead to stack-based buffer overflow. The attack requires access to the local...

8.6CVSS7.7AI score0.00618EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/04/06 9:15 p.m.11 views

CVE-2026-5684

The CVE-2026-5684 vulnerability affects Tenda CX12L (firmware 16.03.53.12). The issue resides in the function fromwebExcptypemanFilter in /goform/webExcptypemanFilter, where crafted input can trigger a stack-based overflow in the affected component. An attacker on the local network can potentiall...

8.6CVSS7.7AI score0.00618EPSS
Exploits1References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/06 8:30 p.m.1 views

CVE-2026-5683

A vulnerability was found in Tenda CX12L 16.03.53.12. Affected by this vulnerability is the function fromP2pListFilter of the file /goform/P2pListFilter. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack must originate from the local network. The...

5.5CVSS6.5AI score0.00619EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 8:30 p.m.2 views

CVE-2026-5683 Tenda CX12L P2pListFilter fromP2pListFilter stack-based overflow

A vulnerability was found in Tenda CX12L 16.03.53.12. Affected by this vulnerability is the function fromP2pListFilter of the file /goform/P2pListFilter. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack must originate from the local network. The...

5.5CVSS6.5AI score0.00619EPSS
Exploits1References5
CVE
CVE
added 2026/04/06 8:30 p.m.22 views

CVE-2026-5683

The CVE-2026-5683 issue affects Tenda CX12L firmware 16.03.53.12, specifically the fromP2pListFilter function in /goform/P2pListFilter. Manipulating the argument page triggers a stack-based buffer overflow, with the attack originating from the local network. Public exploitation is indicated in mu...

8CVSS6.5AI score0.00619EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/04/06 8:16 p.m.3 views

CVE-2025-54328

An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. A Stack-based Buffer Overflow occurs while parsing SMS RP-DA...

10CVSS0.0052EPSS
Exploits1References2
NVD
NVD
added 2026/04/06 5:17 p.m.3 views

CVE-2026-34992

Antrea is a Kubernetes networking solution intended to be Kubernetes native. Prior to 2.4.5 and 2.5.2, a missing encryption vulnerability affects inter-Node Pod traffic. In Antrea clusters configured for dual-stack networking with IPsec encryption enabled trafficEncryptionMode: ipsec, Antrea fail...

7.5CVSS0.00121EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/06 4:31 p.m.18 views

CVE-2026-34992 Missing Encryption of Sensitive Data in antrea.io/antrea

Antrea is a Kubernetes networking solution intended to be Kubernetes native. Prior to 2.4.5 and 2.5.2, a missing encryption vulnerability affects inter-Node Pod traffic. In Antrea clusters configured for dual-stack networking with IPsec encryption enabled trafficEncryptionMode: ipsec, Antrea fail...

7.1CVSS0.00121EPSS
Exploits0References5
CVE
CVE
added 2026/04/06 4:31 p.m.15 views

CVE-2026-34992

CVE-2026-34992 pertains to Antrea (Kubernetes networking). In dual-stack clusters with IPsec (trafficEncryptionMode: ipsec), IPv6 Pod traffic is not encrypted while IPv4 traffic is secured by ESP; packets are encapsulated (Geneve/VXLAN) but bypass the IPsec layer. Impacted users run dual-stack co...

7.5CVSS5.9AI score0.00121EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 4:31 p.m.3 views

CVE-2026-34992 Missing Encryption of Sensitive Data in antrea.io/antrea

Antrea is a Kubernetes networking solution intended to be Kubernetes native. Prior to 2.4.5 and 2.5.2, a missing encryption vulnerability affects inter-Node Pod traffic. In Antrea clusters configured for dual-stack networking with IPsec encryption enabled trafficEncryptionMode: ipsec, Antrea fail...

7.1CVSS5.9AI score0.00121EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/06 3:33 p.m.2 views

CVE-2025-47391 Stack-based Buffer Overflow in Camera Driver

Memory corruption while processing a frame request from user...

7.8CVSS5.9AI score0.00096EPSS
Exploits0References1
CVE
CVE
added 2026/04/06 3:33 p.m.18 views

CVE-2025-47391

CVE-2025-47391 corresponds to a memory corruption issue described in connected records as a stack-based buffer overflow in a camera driver, triggered during processing of a frame request from user. The CVSS 3.1 vector (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) indicates local attack vector with low pr...

7.8CVSS5.9AI score0.00096EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/06 3:10 p.m.3 views

CVE-2026-34211 SandboxJS: Stack overflow DoS via deeply nested expressions in recursive descent parser

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.36, the @nyariv/sandboxjs parser contains unbounded recursion in the restOfExp function and the lispify/lispifyExpr call chain. An attacker can crash any Node.js process that parses untrusted input by supplying deeply nested expressions...

6.9CVSS5.9AI score0.00395EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/06 3:10 p.m.26 views

CVE-2026-34211 SandboxJS: Stack overflow DoS via deeply nested expressions in recursive descent parser

SandboxJS is a JavaScript sandboxing library. Prior to 0.8.36, the @nyariv/sandboxjs parser contains unbounded recursion in the restOfExp function and the lispify/lispifyExpr call chain. An attacker can crash any Node.js process that parses untrusted input by supplying deeply nested expressions...

6.9CVSS0.00395EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/06 10:57 a.m.4 views

CVE-2026-5544

A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. The impacted element is an unknown function of the file /goform/formRemoteControl. The manipulation of the argument Profile results in stack-based buffer overflow. The attack can be executed remotely. The exploit h...

9CVSS7.7AI score0.00472EPSS
Exploits0References1
Rows per page
Query Builder