CVE-2024-24731

CVE-2024-24731 affects Silicon Labs Gecko OS. The vulnerability is a stack-based buffer overflow in the http_download command caused by insufficient validation of user-supplied data length, enabling network-adjacent attackers to execute arbitrary code with device context and no authentication. Do...

CVE-2023-50739

CVE-2023-50739 is a buffer overflow vulnerability in the Lexmark Internet Printing Protocol (IPP) server, affecting Lexmark printers/devices. The root cause is a heap-based overflow in the IPP Server Authorization HTTP Header, enabling arbitrary code execution. Several sources (PT-2024-13963, Ten...

CVE-2024-13503

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in Newtec NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM Updating signaling process in the swdownload binary modules allows Local Execution of Code, Remote Code Inclusion. This issue affects NTC2218, NTC2250,...

CVE-2024-53956

Premiere Pro versions 25.0, 24.6.3 and earlier are affected by a heap-based buffer overflow that could allow arbitrary code execution in the user context. Exploitation requires user interaction (victim must open a malicious file). Multiple sources confirm the issue as CVE-2024-53956 and tie it to...

CVE-2024-52996 Substance3D - Sampler | Heap-based Buffer Overflow (CWE-122)

Substance3D - Sampler versions 4.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

IrfanView out-of-bounds write vulnerability (CNVD-2025-03966)

IrfanView is an image viewer. It supports image browsing, image editing, image format conversion and so on. IrfanView suffers from a buffer overflow vulnerability that stems from the SID file parsing function containing a stack-based buffer overflow. An attacker can exploit this vulnerability to...

Tenda O3 formQosSet function buffer overflow vulnerability

The Tenda O3 is a wireless bridge device designed to extend and enhance wireless network signals for home and small business network environments. The Tenda O3 suffers from a stack-based buffer overflow vulnerability that stems from the fact that the operation of the parameter...

CVE-2024-29421

xmedcon 0.23.0 and fixed in v.0.24.0 is vulnerable to Buffer Overflow via libs/dicom/basic.c which allows an attacker to execute arbitrary code...

CVE-2024-29165

HDF5 through 1.14.3 contains a buffer overflow in H5Zfilterfletcher32, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-29165

HDF5 through 1.14.3 contains a buffer overflow in H5Zfilterfletcher32, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

PT-2024-4522 · FFmpeg +4 · Ffmpeg +4

Name of the Vulnerable Software and Affected Versions: Ffmpeg version v.n6.1-3-g466799d4f5 Description: The issue is related to a Buffer Overflow in the av samples set silence function, located in the libavutil/samplefmt.c component of the Ffmpeg library. This allows a local attacker to potential...

CVE-2024-22912

A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution...

GTKWave buffer overflow vulnerability (CNVD-2024-04853)

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A buffer overflow vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to cause arbitrary code execution via specially crafted .fst files...

CVE-2023-49990

A flaw was found in the espeak-ng package. A local attacker can use a specially-crafted payload to trigger a buffer overflow condition, which can lead to an application crash or allow for arbitrary code execution. Mitigation Mitigation for this issue is either not available or the currently...

CVE-2023-43504

A vulnerability has been identified in COMOS All versions V10.4.4. Ptmcast executable used for testing cache validation service in affected application is vulnerable to Structured Exception Handler SEH based buffer overflow. This could allow an attacker to execute arbitrary code on the target...

CVE-2023-24982

A vulnerability has been identified in Tecnomatix Plant Simulation All versions V2201.0006. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the...

CVE-2021-26259

A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in rendertablerow,in ps-pdf.cxx may lead to arbitrary code execution and denial of service...

CVE-2021-46642

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

CVE-2022-23803

A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon ReadXYCoord coordinate parsing functionality of KiCad EDA 6.0.1 and master commit de006fc010. A specially-crafted gerber or excellon file can lead to code execution. An attacker can provide a malicious fil...

Denial Of Service (DoS)

gpac:bullseye is vulnerable to denial of service. A stack-buffer-overflow exists in the function DumpRawUIConfig located in odfdump.c, allowing an attacker to cause code Execution...