Lucene search
K

74134 matches found

NVD
NVD
added 2026/04/01 11:17 p.m.3 views

CVE-2026-32928

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::convAnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product...

8.4CVSS0.00209EPSS
Exploits0References2
NVD
NVD
added 2026/04/01 11:17 p.m.3 views

CVE-2026-32925

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CV7BaseMap::WriteV7DataToRom. Opening a crafted V7 file may lead to arbitrary code execution on the affected product...

8.4CVSS0.00209EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/01 11:1 p.m.5 views

CVE-2026-34536

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a stack overflow SO in SIccCalcOp::ArgsUsed. The issue is observable under AddressSanitizer as a stack-overflow when iccApplyProfiles processes ...

6.2CVSS5.8AI score0.00222EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.7 views

CVE-2026-34542

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a stack-buffer-overflow SBO in CIccCalculatorFunc::Apply when processed via iccApplyNamedCmm. Under AddressSanitizer, the failure is reported as...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.3 views

CVE-2026-34555

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a stack-buffer-overflow SBO in CIccTagFixedNum::GetValues and a related bug chain. The primary crash is an AddressSanitizer-reported WRITE of size 4 that overflows a...

6.2CVSS5.8AI score0.00177EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.5 views

CVE-2026-5212

A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This issue affects the function...

9CVSS7.7AI score0.00737EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.7 views

CVE-2026-5213

A vulnerability was determined in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. The affected element is the function...

9CVSS7.6AI score0.00715EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.6 views

CVE-2026-5211

A flaw has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This vulnerability affects the function...

9CVSS7.8AI score0.007EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/01 10:59 p.m.2 views

CVE-2026-32928

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::convAnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product...

8.4CVSS6.7AI score0.00209EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/01 10:59 p.m.3 views

CVE-2026-32928

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::convAnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product...

8.4CVSS6.7AI score0.00209EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/01 10:59 p.m.23 views

CVE-2026-32928

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::convAnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product...

8.4CVSS0.00209EPSS
Exploits0References2
CVE
CVE
added 2026/04/01 10:59 p.m.25 views

CVE-2026-32928

The CVE-2026-32928 entry affects FUJI Electric V-SFT (versions 6.2.10.0 and earlier). The root cause is a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem when processing a crafted V7 file. Impact per the sources is potential arbitrary code execution on the affected produc...

8.4CVSS6.7AI score0.00209EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/01 10:58 p.m.11 views

CVE-2026-32925

CVE-2026-32925 affects FUJI Electric V-SFT: stack-based buffer overflow in VS6ComFile!CV7BaseMap::WriteV7DataToRom for versions

8.4CVSS6.7AI score0.00209EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/01 10:58 p.m.2 views

CVE-2026-32925

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CV7BaseMap::WriteV7DataToRom. Opening a crafted V7 file may lead to arbitrary code execution on the affected product...

8.4CVSS6.7AI score0.00209EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/01 5:3 p.m.4 views

CVE-2026-5204

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component Parameter Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack can be initiated remotely. The exploi...

9CVSS7.8AI score0.02475EPSS
Exploits1References1
OSV
OSV
added 2026/04/01 4:24 p.m.2 views

SUSE-SU-2026:20993-1 Security update for perl-XML-Parser

This update for perl-XML-Parser fixes the following issues: - CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams bsc1259901. - CVE-2006-10003: off-by-one heap buffer overflow in stserialstack bsc1259902...

9.8CVSS6.1AI score0.00604EPSS
Exploits0References5
OSV
OSV
added 2026/04/01 4:23 p.m.3 views

OPENSUSE-SU-2026:20459-1 Security update for perl-XML-Parser

This update for perl-XML-Parser fixes the following issues: - CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams bsc1259901. - CVE-2006-10003: off-by-one heap buffer overflow in stserialstack bsc1259902...

9.8CVSS6.2AI score0.00604EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/01 1:37 p.m.3 views

CVE-2026-23404

A flaw was found in the Linux kernel's AppArmor security module. A local user could trigger a denial of service by initiating a recursive profile removal operation with deeply nested profiles. This recursive process can lead to kernel stack exhaustion, causing the system to crash...

5.9AI score0.00177EPSS
Exploits0References4
OSV
OSV
added 2026/04/01 11:43 a.m.7 views

CLSA-2026-1774999144 ImageMagick: Fix of 7 CVEs

CVE-2026-28494: fix stack buffer overflow in morphology kernel parsing - CVE-2026-28691: fix uninitialized pointer dereference in JBIG decoder - CVE-2026-25989: fix off-by-one boundary check in CastDouble functions - CVE-2026-25985: fix memory allocation without limits in SVG decoder -...

8.1CVSS6AI score0.00594EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/01 9:31 a.m.5 views

EUVD-2026-17832

In the Linux kernel, the following vulnerability has been resolved: apparmor: replace recursive profile removal with iterative approach The profile removal code uses recursion when removing nested profiles, which can lead to kernel stack exhaustion and system crashes. Reproducer: $ pf='a'; for i=...

5.8AI score0.00177EPSS
Exploits0References6
Rows per page
Query Builder