Lucene search
K

74148 matches found

RedhatCVE
RedhatCVE
added 2026/03/30 5:6 p.m.4 views

CVE-2026-5044

A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to stack-based buffer overflow. The attack can be...

9CVSS6.5AI score0.00663EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/30 5:6 p.m.3 views

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References4
OSV
OSV
added 2026/03/30 5:6 p.m.4 views

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/30 5:6 p.m.6 views

EUVD-2025-209129

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/30 5:6 p.m.3 views

CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

3.8CVSS5.8AI score0.00159EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/03/30 5:6 p.m.17 views

CVE-2025-66215

OpenSC (OpenSC/OpenSC libraries) contains a stack-buffer-overflow in the card-oberthur path that affects versions prior to 0.27.0. An attacker with physical access could trigger the vulnerability by presenting crafted APDUs via a malicious USB device or smart card. The issue is reported as fixed ...

6.8CVSS5.8AI score0.00159EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/03/30 5:6 p.m.5 views

CVE-2025-66215

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow WRITE in card-oberthur. The attack requires crafted USB device or smart card that...

6.8CVSS5AI score0.00159EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/30 5:6 p.m.7 views

CVE-2026-5046

A flaw has been found in Tenda FH1201 1.2.0.14408. Affected is the function formWrlExtraSet of the file /goform/WrlExtraSet of the component Parameter Handler. Executing a manipulation of the argument GO can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit...

9CVSS6.3AI score0.00632EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/30 5:6 p.m.4 views

CVE-2026-5043

A weakness has been identified in Belkin F9K1122 1.00.33. The impacted element is the function formSetPassword of the file /goform/formSetPassword of the component Parameter Handler. This manipulation of the argument webpage causes stack-based buffer overflow. Remote exploitation of the attack is...

9CVSS6.2AI score0.00793EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/30 4:59 p.m.4 views

CVE-2025-49010 OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/30 4:59 p.m.5 views

EUVD-2025-209124

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/30 4:59 p.m.1 views

CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/03/30 4:59 p.m.14 views

CVE-2025-49010

OpenSC before version 0.27.0 is vulnerable to a stack-buffer-overflow write in GET RESPONSE when a crafted USB device or smart card presents specially crafted APDU responses. The attack requires physical access and user/administrator interaction with the token. A fix exists in OpenSC 0.27.0 and l...

6.8CVSS5.8AI score0.0013EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/03/30 4:59 p.m.4 views

CVE-2025-49010 OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

3.8CVSS5.8AI score0.0013EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/03/30 4:59 p.m.4 views

CVE-2025-49010

OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, an attacker with physical access to the computer at the time user or administrator uses a token can cause a stack-buffer-overflow write in GET RESPONSE. The attack requires crafted USB device or smart card that wou...

6.8CVSS5AI score0.0013EPSS
Exploits0
EUVD
EUVD
added 2026/03/30 3:32 p.m.7 views

EUVD-2026-17087

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the AVRCP Controller GETPLAYERAPPLICATIONSETTINGATTRIBUTETEXT and GETPLAYERAPPLICATIONSETTINGVALUETEXT handlers that allows nearby attackers to read beyond packet boundaries. Attackers can establish a paire...

3.5CVSS5.9AI score0.00157EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/30 3:32 p.m.7 views

EUVD-2026-17085

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the AVRCP Controller LISTPLAYERAPPLICATIONSETTINGATTRIBUTES and LISTPLAYERAPPLICATIONSETTINGVALUES handlers that allows attackers to read beyond buffer boundaries. A nearby attacker with a paired Bluetooth...

3.5CVSS6AI score0.00143EPSS
Exploits0References3
CVE
CVE
added 2026/03/30 2:8 p.m.11 views

CVE-2026-28528

BlueKitchen BTstack

4.6CVSS5.9AI score0.00135EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/30 2:8 p.m.6 views

CVE-2026-28528 BlueKitchen BTstack < 1.8.1 AVRCP Browsing Target GET_FOLDER_ITEMS Handler OOB Read / Undefined Behavior

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the AVRCP Browsing Target GETFOLDERITEMS handler that fails to validate packet boundaries and attribute count data. An attacker with a paired Bluetooth Classic connection can exploit insufficient bounds...

4.6CVSS5.9AI score0.00135EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/30 2:6 p.m.21 views

CVE-2026-28526 BlueKitchen BTstack < 1.8.1 AVRCP Controller LIST_PLAYER_APPLICATION_SETTING_* Handlers OOB Read

BlueKitchen BTstack versions prior to 1.8.1 contain an out-of-bounds read vulnerability in the AVRCP Controller LISTPLAYERAPPLICATIONSETTINGATTRIBUTES and LISTPLAYERAPPLICATIONSETTINGVALUES handlers that allows attackers to read beyond buffer boundaries. A nearby attacker with a paired Bluetooth...

3.5CVSS0.00143EPSS
Exploits0References2
Rows per page
Query Builder