Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 2026/05/07 4:59 p.m.9 views

CVE-2026-41907

A flaw was found in uuid. The library's versions v3, v5, and v6 do not adequately check the size of external memory buffers provided by applications. This oversight allows the library to write data beyond the designated buffer limits without signaling an error. Such out-of-bounds writes can lead ...

9.3CVSS5.9AI score0.00337EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.6 views

The vulnerability of the microchip-core component of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the microchip-core component of the Linux operating system’s kernel is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

8CVSS6.3AI score0.00225EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.6 views

The vulnerability of the formDnsv6 function in the Totolink A3002R router’s software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formDnsv6 function in the Totolink A3002R router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and...

10CVSS5.5AI score0.0053EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/17 12:0 a.m.6 views

The vulnerability in the implementation of the SMB protocol in the Mac OS allows a perpetrator to increase their privileges and execute arbitrary code.

The vulnerability of the SMB protocol implementation in the Mac OS is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute arbitrary code...

6.8CVSS5.8AI score0.00244EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/25 12:0 a.m.6 views

The vulnerability of the uh_tcp_recv_header() function in the HTTP-server of the microprogramming-based Wi-Fi extension devices from Actiontec, WCB6200Q, allows a hacker to execute arbitrary code.

The vulnerability of the uhtcprecvheader function in the HTTP-server of the microprogrammed Wi-Fi extension software from Actiontec WCB6200Q involves copying buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

8.8CVSS8AI score0.01119EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/09/01 12:0 a.m.4 views

The vulnerability of the NFC microprogramming software services provided by the microcircuits S3NRN4V, S3NSN4V, S3NSEN4, SEN82AB, and S3NRN82 allows a perpetrator to trigger a restart of the NFC service.

The vulnerability of the NFC microprogramming software services provided by the microcircuits S3NRN4V, S3NSN4V, S3NSEN4, SEN82AB, and S3NRN82 lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker, operating remotely, to...

4.3CVSS5.5AI score0.00265EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/05/10 12:0 a.m.9 views

The vulnerability of the microprogramming software of Zyxel NBG-418N switches lies in the copying of buffers without checking the size of the input data, allowing a hacker to trigger a service failure.

The vulnerability of the microprogramming software of Zyxel NBG6604 lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a remote attacker to cause service failures...

9CVSS7.6AI score0.01647EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/12/19 12:0 a.m.10 views

The vulnerability of the devredir_proc_client_devlist_announce_req() function on the XRDP server allows a hacker to execute arbitrary code.

The vulnerability of the devredirprocclientdevlistannouncereq function on the XRDP server is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS7.6AI score0.00847EPSS
Exploits0References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/04/14 12:0 a.m.5 views

The vulnerability of the __Parse_indx component in the VLC Media Player allows a attacker to access confidential data and also cause a service failure.

The vulnerability of the Parseindx component in the VLC Media Player lies in the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to gain access to confidential data and also cause a service failure by using a specially created .avi file...

8.8CVSS7.2AI score0.01522EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/04/14 12:0 a.m.7 views

The vulnerability of the vlc_input_attachment_New component in the VLC Media Player software allows a hacker to gain access to confidential data and also cause a service failure.

The vulnerability of the vlcinputattachmentNew component in the VLC Media Player software is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to gain access to confidential data and also cause a service failure by using a speciall...

8.8CVSS7.2AI score0.00741EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.5 views

The vulnerability of the GOOSE (Generic Object-Oriented Substation Event) protocol implementation in Schneider Electric Easergy P3 micro-programmed devices for relay protection and control allows a perpetrator to execute arbitrary code or cause malfunctions during maintenance.

The vulnerability of the GOOSE Generic Object-Oriented Substation Event protocol implementation in Schneider Electric Easergy P3 microprogrammable devices for relay protection and control systems lies in the copying of buffers without checking the size of input data. Exploiting this vulnerability...

8.8CVSS8.3AI score0.02789EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.6 views

The vulnerability of NETGEAR R8000 Wi-Fi routers’ microprogramming software lies in the copying of buffers without checking the size of the input data. This allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of NETGEAR R8000 Wi-Fi routers’ microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary codes remotely...

7.6CVSS8AI score0.01176EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/01/25 12:0 a.m.5 views

The vulnerability of the built-in software on NETGEAR Wi-Fi routers such as D8500, R6250, R7000, R7100LG, R7900, R8300, R8500, XR300, R7000P, and R6900 lies in the copying of buffers without checking the size of the input data. This allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of NETGEAR Wi-Fi router software models such as D8500, R6250, R7000, R7100LG, R7900, R8300, R8500, XR300, R7000P, and R6900P lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary co...

9.6CVSS8.2AI score0.01199EPSS
Exploits0References3Affected Software10
BDU FSTEC
BDU FSTEC
added 2021/12/01 12:0 a.m.5 views

The vulnerability of Cisco Small Business LLDP switches, related to copying buffers without checking input data, allows a perpetrator to execute arbitrary code.

The vulnerability of Cisco Small Business LLDP switches lies in the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code...

4.3CVSS5.8AI score0.00398EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.3 views

The vulnerability of NETGEAR Wi-Fi router microprogramming software, models AC2100, AC2400, AC2600, R6020, R6080, R6120, R6260, R6330, R6350, R6700v2, R6800, R6850, R6900v2, R7200, R7350, R7400, and R7450, arises from the copying of buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of NETGEAR Wi-Fi router software models AC2100, AC2400, AC2600, R6020, R6080, R6120, R6260, R6330, R6350, R6700v2, R6800, R6850, R6900v2, R7200, R7350, R7400, and R7450 lies in the copying of buffers without checking the size of input data. Exploiting this vulnerability allows a...

8.8CVSS8AI score0.01374EPSS
Exploits0References4Affected Software17
BDU FSTEC
BDU FSTEC
added 2021/03/15 12:0 a.m.6 views

The vulnerability of the microprogramming software of the Intel Modular Server MFS2600KI arises from copying buffers without checking the size of the input data. This allows attackers to exploit this vulnerability to increase their privileges.

The vulnerability of the Microprogramming Software of the Intel Modular Server MFS2600KI is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker, operating remotely, to increase their privileges...

4.7CVSS7.6AI score0.0061EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.5 views

The vulnerability in the packet routing protocol implementation in Unix-like operating systems, bird, arises from copying buffers without checking the size of the input data. This allows a malicious actor to cause a service failure.

The vulnerability in the packet routing protocol implementation in Unix-like operating systems, bird, relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.5CVSS7.1AI score0.03153EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2019/02/08 11:0 a.m.24 views

CVE-2018-20340

Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An attacker could use this to attempt to execute malicious code using a crafted USB device masquerading as a security token on a computer where the affected library is...

6.8CVSS7.2AI score0.00499EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

CREAR ALMail32 1.10 Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/574/info The ALMail32 POP3 client conatins unchecked buffers in the header parsing code. An abnormally long FROM: or TO: field in the header of an incoming email will overwrite the buffer and allow arbitrary code to be...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2002/04/18 12:0 a.m.41 views

Security Bulletin MS02-020:SQL Extended Procedure Functions Contain Unchecked Buffers (Q319507)

---------------------------------------------------------------------- Title: SQL Extended Procedure Functions Contain Unchecked Buffers Q319507 Date: 17 April 2002 Software: Microsoft SQL Server Impact: Run Code of Attacker's Choice Max Risk: Moderate Bulletin: MS02-020 Microsoft encourages...

0.1AI score
Exploits0
Rows per page
Query Builder