CVE-2026-41475

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's WritePropertyMultiple service decoder allows unauthenticated remote attackers to read past allocated buffer boundaries by sending a truncated W...

EUVD-2026-21378

A heap buffer overflow vulnerability exists in the Netwide Assembler NASM due to a lack of bounds checking in the objdirective function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service crash, and...

CVE-2026-22214

RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the handlechar function, where incoming frame bytes are appended t...

CVE-2026-22214 RIOT OS <= 2026.01-devel-317 Stack-Based Buffer Overflow in ethos Serial Frame Parser

RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulnerability in the ethos utility due to missing bounds checking when processing incoming serial frame data. The vulnerability occurs in the handlechar function, where incoming frame bytes are appended t...

MediaTek Chipsets 缓冲区错误漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A buffer error vulnerability exists in MediaTek Chipsets, which stems from the V5 DA module containing a missing bounds-checking issue that could lead to out-of-bounds writes...

DEBIAN-CVE-2022-48632

In the Linux kernel, the following vulnerability has been resolved: i2c: mlxbf: prevent stack overflow in mlxbfi2csmbusstarttransaction memcpy is called in a loop while 'operation-length' upper bound is not checked and 'dataidx' also increments...

Google Pixel 缓冲区错误漏洞

Google Pixel is a smartphone from Google Inc USA. Google Pixel suffers from a buffer error vulnerability that stems from a lack of bounds checking and possible out-of-bounds reads...

UNISOC chipset 输入验证错误漏洞

The UNISOC chipset is an integrated circuit chipset from China's Unisolar Corporation UNISOC. A security vulnerability exists in the UNISOC chipset due to a lack of bounds checking in its wlan driver, resulting in a local denial of service for the wlan service...

UNISOC chipset 输入验证错误漏洞

The UNISOC chipset is an integrated circuit chipset from China's Unisolar Corporation UNISOC. A security vulnerability exists in the UNISOC chipset due to a lack of bounds checking in its wlan driver, resulting in a local denial of service for the wlan service...

Google Android Remote Code Execution Vulnerability (CNVD-2019-35238)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. A remote code execution vulnerability exists in Google Android 10. The vulnerability stems from an out-of-bounds write problem in libxaac in Android caused by a lac...