Lucene search
K

4224 matches found

BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.8 views

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside the buffer in memory, allowing an attacker to cause a service failure.

The vulnerability in Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

10CVSS7.9AI score0.00302EPSS
Exploits0References14Affected Software4
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-42261

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where an input index is not validated, which may lead to buffer overrun,...

7.8CVSS7.6AI score0.00258EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/06 10:13 p.m.5 views

CVE-2025-7844

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default MAXRSAKEYBITS=2048 is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than...

1CVSS6.6AI score0.00137EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/08/06 8:1 a.m.1 views

kernel: xhci: handle isoc Babble and Buffer Overrun events properly

A flaw was found in the Linux kernel related to the Extensible Host Controller Interface xHCI subsystem, specifically how it handles certain events. The issue arises when the xHCI driver improperly handles isochronous isoc Babble and Buffer Overrun events. The vulnerability occurs because the xHC...

5.5CVSS7.1AI score0.0023EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.3 views

PT-2025-40877

Name of the Vulnerable Software and Affected Versions OpenEXR versions prior to 8.0 Description The software is susceptible to an issue when decoding OpenEXR files that utilize DWAA or DWAB compression. Specifically, the length of run-length-encoded data is not validated during the decoding...

9.8CVSS6.9AI score0.01545EPSS
Exploits7References60
NVD
NVD
added 2025/08/04 10:15 p.m.4 views

CVE-2025-7844

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default MAXRSAKEYBITS=2048 is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than...

1CVSS0.00137EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.14 views

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, arises from writing beyond buffer boundaries, allowing a hacker to execute arbitrary code.

The vulnerability of the software for programming operator panels of the VT series, such as VT-Designer, lies in the writing beyond buffer boundaries when processing PM3 files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.7AI score0.00205EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.6 views

The vulnerability of the formSetWAN_Wizard51() function (/goform/formSetWAN_Wizard51) in the D-Link DIR-619L router microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetWANWizard51 function /goform/formSetWANWizard51 in the D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

9CVSS7.6AI score0.00848EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2025/08/01 1:3 p.m.4 views

OESA-2025-1935 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...

9.8CVSS6.6AI score0.00472EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2025/08/01 12:0 a.m.7 views

The vulnerability of P-Net’s input/output devices, related to writing beyond buffer boundaries, allows a intruder to cause a service failure.

The vulnerability of P-Net’s input/output devices is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6AI score0.00458EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/30 12:0 a.m.5 views

The vulnerability of the dma_unmap_len_set() function in the bnxt_en component of the Linux operating system allows a hacker to increase their privileges.

The vulnerability of the dmaunmaplenset function in the bnxten component of the Linux operating system’s kernel is related to operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to gain increased privileges...

7CVSS6.7AI score0.0017EPSS
Exploits0References19Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/07/30 12:0 a.m.5 views

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of the software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created PR...

7.8CVSS8AI score0.00163EPSS
Exploits0References3Affected Software14
BDU FSTEC
BDU FSTEC
added 2025/07/30 12:0 a.m.3 views

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of the software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created XT...

7.8CVSS8AI score0.00163EPSS
Exploits0References3Affected Software14
BDU FSTEC
BDU FSTEC
added 2025/07/30 12:0 a.m.4 views

Vulnerability of software for modeling, designing, and drawing in AutoCAD, related to the execution of operations beyond buffer boundaries in memory, allowing attackers to execute arbitrary code or cause system failures.

The vulnerability of software for modeling, designing, and drawing in AutoCAD is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created 3DM fi...

7.8CVSS8AI score0.00163EPSS
Exploits0References3Affected Software14
BDU FSTEC
BDU FSTEC
added 2025/07/29 12:0 a.m.5 views

The vulnerability of the i2c_dw_xfer_init() function in the drivers/i2c/busses/i2c-designware-master.c module of Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the i2cdwxferinit function in the drivers/i2c/busses/i2c-designware-master.c file of the Linux kernel is related to the occurrence of operations outside the buffer boundaries due to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to...

7CVSS6.9AI score
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.6 views

The vulnerability of the built-in boa server (/boafrm/formFilter) of the TOTOLINK X15 router’s microprogramming software allows a hacker to induce a service failure.

The vulnerability of the built-in server boa /boafrm/formFilter of the TOTOLINK X15 router microprogramming system is related to the issue where an operation is executed outside the buffer in memory when processing the ip6addr parameter. Exploiting this vulnerability allows a malicious actor to...

9CVSS7.8AI score0.01043EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/28 12:0 a.m.4 views

The vulnerability of the idr_for_each() function in the Linux operating system’s kernel allows a attacker to cause a service failure.

The vulnerability of the idrforeach function in the Linux operating system’s kernel arises from the operation exceeding the memory buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

7CVSS6.9AI score0.00153EPSS
Exploits0References17Affected Software6
Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.2 views

NewStart CGSL MAIN 7.02 : opensc Multiple Vulnerabilities (NS-SA-2025-0119)

The remote NewStart CGSL host, running version MAIN 7.02, has opensc packages installed that are affected by multiple vulnerabilities: - A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operation...

7.1CVSS6AI score0.01174EPSS
Exploits1References11
BDU FSTEC
BDU FSTEC
added 2025/07/24 12:0 a.m.7 views

The vulnerability of the formSetWanNonLogin() function in the embedded web server software of D-Link DIR-513 routers allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the formSetWanNonLogin function in the embedded web server software of D-Link DIR-513 routers is related to the issue of data being written outside the buffer in memory when processing the curTime parameter. Exploiting this vulnerability could allow a remote attacker to execu...

9CVSS8.3AI score0.01153EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.3 views

The vulnerability of the libsavsvc.so library in Android operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the libsavsvc.so library in Android operating systems is related to writing beyond the buffer boundaries when processing MPEG4 files. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information...

7CVSS5.7AI score0.00123EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder