CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

727 matches found

Vulnrichment•added 2026/03/26 1:24 p.m.•5 views

CVE-2018-25212 Boxoft wav-wma Converter 1.0 Local Buffer Overflow SEH

Boxoft wav-wma Converter 1.0 contains a local buffer overflow vulnerability in structured exception handling that allows attackers to execute arbitrary code by crafting malicious WAV files. Attackers can create a specially crafted WAV file with excessive data and ROP gadgets to overwrite the SEH...

8.6CVSS6.8AI score0.00206EPSS

Exploits1References3

CVE•added 2026/03/26 1:24 p.m.•5 views

CVE-2018-25212

The CVE-2018-25212 entry concerns Boxoft wav-wma Converter 1.0, which reportedly contains a local buffer overflow vulnerability in structured exception handling. An attacker can craft WAV files with excess data and ROP gadgets to overwrite the SEH chain, enabling arbitrary code execution on Windo...

8.6CVSS6.8AI score0.00206EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2026/03/26 12:0 a.m.•4 views

PT-2026-28261

Name of the Vulnerable Software and Affected Versions River Past CamDo version 3.7.6 Description The software contains a structured exception handler SEH buffer overflow. Local attackers can execute arbitrary code by providing a malicious string in the Lame enc.dll name field. Attackers can creat...

8.6CVSS6.7AI score0.00183EPSS

Exploits0References5

Positive Technologies•added 2026/03/26 12:0 a.m.•2 views

PT-2026-28256

PassFab Excel Password Recovery 8.3.1 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload in the registration code field. Attackers can craft a buffer overflow payload with a pop-pop-ret gadg...

8.6CVSS6.8AI score0.00247EPSS

Exploits1References5

Positive Technologies•added 2026/03/26 12:0 a.m.•3 views

PT-2026-28249

8.6CVSS6.8AI score0.00206EPSS

Exploits1References4

Positive Technologies•added 2026/03/26 12:0 a.m.•3 views

PT-2026-28254

PDF Explorer 1.5.66.2 contains a structured exception handler SEH overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH records with malicious data. Attackers can craft a payload with buffer overflow, NSEH jump, and ROP gadget chains that execute when the...

8.6CVSS6.4AI score0.0022EPSS

Exploits1References5

CNNVD•added 2026/03/26 12:0 a.m.•2 views

Nsasoft Nsauditor 缓冲区错误漏洞

Nsasoft Nsauditor is a network security software developed by the American company Nsasoft. Version Nsasoft Nsauditor 3.0.28.0 contains a buffer error vulnerability, which stems from buffer overflows during structured exception handling. This vulnerability could allow for the execution of arbitra...

8.6CVSS6.2AI score0.00247EPSS

Exploits1References4

CNNVD•added 2026/03/26 12:0 a.m.•4 views

Rttsoftware PDF Explorer 缓冲区错误漏洞

Rttsoftware PDF Explorer is a PDF file management and browsing tool developed by Rttsoftware Corporation. Version 1.5.66.2 of Rttsoftware PDF Explorer contains a buffer error vulnerability. This vulnerability stems from an overflow in the structured exception handler, which may allow local...

8.6CVSS6.5AI score0.0022EPSS

Exploits1References4

CNNVD•added 2026/03/26 12:0 a.m.•4 views

River Past CamDo 缓冲区错误漏洞

River Past CamDo is a screen recording and camera capture tool developed by River Past Corporation. Version 3.7.6 of River Past CamDo contains a buffer error vulnerability. This vulnerability stems from a buffer overflow in the structured exception handler, which may allow local attackers to...

8.6CVSS6.5AI score0.00183EPSS

Exploits0References3

Positive Technologies•added 2026/03/26 12:0 a.m.•5 views

PT-2026-28250

Name of the Vulnerable Software and Affected Versions Nsauditor version 3.0.28.0 Description A structured exception handling SEH buffer overflow allows local attackers to execute arbitrary code by providing malicious input to the DNS Lookup tool. Attackers can craft a payload that overwrites the...

8.6CVSS6.6AI score0.00247EPSS

Exploits1References6

EUVD•added 2026/03/24 12:30 p.m.•5 views

EUVD-2019-20006

AIDA64 Extreme 5.99.4900 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input through the email preferences and report wizard interfaces. Attackers can inject crafted payloads into the Display nam...

8.6CVSS6.4AI score0.00257EPSS

Exploits1References5

EUVD•added 2026/03/24 12:30 p.m.•2 views

EUVD-2019-20002

AIDA64 Business 5.99.4900 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting SEH pointers with malicious shellcode. Attackers can inject egg hunter shellcode through the SMTP display name field in preferences...

8.6CVSS6.4AI score0.00257EPSS

Exploits1References5

EUVD•added 2026/03/24 12:30 p.m.•2 views

EUVD-2019-19996

Download Accelerator Plus DAP 10.0.6.0 contains a structured exception handler buffer overflow vulnerability that allows remote attackers to execute arbitrary code by crafting malicious URLs. Attackers can create specially crafted URLs with overflowing buffer data that overwrites SEH pointers and...

9.8CVSS6.4AI score0.00802EPSS

Exploits0References5

EUVD•added 2026/03/24 12:30 p.m.•3 views

EUVD-2019-20008

Base64 Decoder 1.1.2 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by triggering a structured exception handler SEH overwrite. Attackers can craft a malicious input file that overflows a buffer, overwrites the SEH chain with a POP-POP-R...

8.6CVSS6.6AI score0.00262EPSS

Exploits1References5