Lucene search
K

407 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

The vulnerability of the fwAcosCgiInbound function in NETGEAR EX6120 router microprogramming software allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fwAcosCgiInbound function in NETGEAR EX6120 router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of...

9CVSS7.6AI score0.00939EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

Vulnerability of the ad7124_of_parse_channel_config() function in the drivers/iio/adc/ad7124.c module – A driver that supports various types of built-in sensors in the Linux operating system, which allows a hacker to cause service failures.

Vulnerability of the ad7124ofparsechannelconfig function in the drivers/iio/adc/ad7124.c module – The driver for supporting various types of built-in sensors in the Linux operating system involves copying buffers without checking the size of the input data a classic buffer overflow attack...

5.5CVSS6.7AI score0.00225EPSS
Exploits0References12Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.7 views

The vulnerability of the bearer_name_validate() function in the net/tipc/bearer.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bearernamevalidate function in the net/tipc/bearer.c module of the Linux kernel lies in the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS7.5AI score
Exploits0References26Affected Software4
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unchecked input size that could lead to out-of-bounds writes...

7.8CVSS7.3AI score0.00156EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.6 views

The vulnerability of the formSetPPTPUserList() function (/goform/setPptpUserList) in the Tenda AC6 router software allows a hacker to trigger a service failure.

The vulnerability of the formSetPPTPUserList function /goform/setPptpUserList of the Tenda AC6 router’s microprogramming software is related to the copying of buffers without checking the size of the input data when processing the list parameter. Exploiting this vulnerability could allow an...

9CVSS7.7AI score0.00804EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.6 views

The vulnerability of the fromadvsetlanip() function (/goform/AdvSetLanip) in the Tenda AC15 router software allows a hacker to cause a service failure.

The vulnerability of the fromadvsetlanip function /goform/AdvSetLanip of the Tenda AC15 router’s microprogramming software is related to the copying of buffers without checking the size of the input data when processing the lanMask parameter. Exploiting this vulnerability could allow a remote...

9CVSS7.8AI score0.00776EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/13 12:0 a.m.5 views

The vulnerability of the formSetPPTPUserList() function in the Tenda AC15 router software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetPPTPUserList function in the Tenda AC15 router’s microprogramming software lies in the copying of buffers without checking the size of the input data when processing the list parameter. Exploiting this vulnerability could allow an attacker to compromise the...

9CVSS7.6AI score0.00776EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.8 views

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.4CVSS5.4AI score0.00095EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.24 views

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.4CVSS5.4AI score0.00106EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/30 12:0 a.m.5 views

The vulnerability of the check_language_file() function in Netgear’s JWNR2000v2 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the checklanguagefile function in Netgear JWNR2000v2 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

9CVSS7.6AI score0.00884EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:34 a.m.6 views

CVE-2024-5991

In function MatchDomainName, input param str is treated as a NULL terminated string despite being user provided and unchecked. Specifically, the function X509checkhost takes in a pointer and length to check against, with no requirements that it be NULL terminated. If a caller was attempting to do...

10CVSS6.8AI score0.0056EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 8:43 a.m.5 views

CVE-2024-36406

SuiteCRM is an open-source Customer Relationship Management CRM software application. In versions prior to 7.14.4 and 8.6.1, unchecked input allows for open re-direct. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

5.4CVSS6.8AI score0.00278EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.6 views

The vulnerability of the /boafrm/formDMZ file in the HTTP POST Request Handler of the microprogramming software for TOTOLINK A702R, A3002R, and A3002RU routers allows a perpetrator to execute arbitrary code.

The vulnerability of the /boafrm/formDMZ file in the HTTP POST Request Handler of the microprogramming software for TOTOLINK A702R, A3002R, and A3002RU routers is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker...

9CVSS8AI score0.00667EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.7 views

The vulnerability of the HTTP POST Request Handler component, sub_40BE30, in the microprogramming software of the A702R, A3002R, and A3002RU routers allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component, sub40BE30 in the microprogramming software of the A702R, A3002R, and A3002RU routers, involves copying buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

9CVSS7.7AI score0.00661EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.10 views

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formNtp file in the microprogramming software for routers A702R, A3002R, and A3002RU allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formNtp file in the microprogramming software for routers A702R, A3002R, and A3002RU is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker ...

9CVSS7.7AI score0.00662EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.8 views

The vulnerability of the /goform/UserCongratulationsExec file in the Tenda AC10 router microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the /goform/UserCongratulationsExec microprogramming system for Tenda AC10 routers lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

9CVSS8AI score0.00683EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.11 views

The vulnerability of the /goform/SetNetControlList component in the Tenda TX3 router software allows a attacker to compromise the accessibility of protected information.

The vulnerability of the /goform/SetNetControlList component in the Tenda TX3 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

7.8CVSS6.6AI score0.01125EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.7 views

The vulnerability of the /goform/openSchedWifi component in the microprogramming software for Tenda TX3, which stems from copying buffers without checking the size of the input data, allows attackers to compromise the accessibility of protected information.

The vulnerability of the /goform/openSchedWifi component in the microprogramming-based routing software Tenda TX3 lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected...

6.8CVSS6.6AI score0.00786EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.7 views

The vulnerability of the HTTP POST Request Handler component in the microprogramming software for TOTOLINK A3002R and A3002RU allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component in the microprogramming software of TOTOLINK A3002R and A3002RU devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

9CVSS7.6AI score0.00661EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.7 views

The vulnerability of the formSetLog function in the D-Link DIR-600L router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formSetLog function in the D-Link DIR-600L router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code by using the host...

10CVSS8.1AI score0.01031EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder