Lucene search
K

4306 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:54 a.m.7 views

CVE-2022-23006

A stack-based buffer overflow vulnerability was found on Western Digital My Cloud Home, My Cloud Home Duo, and SanDisk ibi that could allow an attacker accessing the system locally to read information from /etc/version file. This vulnerability can only be exploited by chaining it with another...

6.7CVSS8AI score0.00278EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:40 a.m.5 views

CVE-2022-35470

OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x65fc97...

6.5CVSS7.5AI score0.00684EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.10 views

CVE-2019-18655

File Sharing Wizard version 1.5.0 build 2008 is affected by a Structured Exception Handler based buffer overflow vulnerability. An unauthenticated attacker is able to perform remote command execution and obtain a command shell by sending a HTTP GET request including the malicious payload in the...

10CVSS7.3AI score0.72158EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.8 views

CVE-2019-18930

Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users including guest account to remotely execute arbitrary code via a stack-based buffer overflow. There is no size verification logic in one of functions in libscheddl.so, and downloadmgr.cgi makes it possible to enter large-sized...

9CVSS8AI score0.03209EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.8 views

CVE-2019-2312

When handling the vendor command there exists a potential buffer overflow due to lack of input validation of data buffer received in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in...

7.8CVSS9.7AI score0.00197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.4 views

CVE-2019-11371

BWA aka Burrow-Wheeler Aligner 0.7.17 r1198 has a Buffer Overflow via a long prefix that is mishandled in bnsfasta2bntseq and bnsdump at btnseq.c...

9.8CVSS6.8AI score0.01589EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:3 a.m.8 views

CVE-2011-0500

Buffer overflow in VideoSpirit Pro 1.6.8.1, 1.68, and earlier; and VideoSpirit Lite 1.4.0.1 and possibly other versions; allows user-assisted remote attackers to execute arbitrary code via a VideoSpirit project .visprj file containing a valitem element with a long "value" attribute, as demonstrat...

9.3CVSS8.3AI score0.30708EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:0 a.m.8 views

CVE-2020-7002

Delta Industrial Automation CNCSoft ScreenEditor, v1.00.96 and prior. Multiple stack-based buffer overflows can be exploited when a valid user opens a specially crafted, malicious input file...

7.8CVSS7AI score0.01144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:55 a.m.9 views

CVE-2020-12140

A buffer overflow in os/net/mac/ble/ble-l2cap.c in the BLE stack in Contiki-NG 4.4 and earlier allows an attacker to execute arbitrary code via malicious L2CAP frames...

8.8CVSS8.3AI score0.0092EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.7 views

CVE-2020-10214

An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. There is a stack-based buffer overflow in the httpd binary. It allows an authenticated user to execute arbitrary code via a POST to ntpsync.cgi with a sufficiently long parameter ntpserver...

9CVSS8.1AI score0.18327EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.8 views

CVE-2024-41435

YugabyteDB v2.21.1.0 was discovered to contain a buffer overflow via the "insert into" parameter...

7.5CVSS7.9AI score0.0051EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.11 views

CVE-2024-41436

ClickHouse v24.3.3.102 was discovered to contain a buffer overflow via the component DB::evaluateConstantExpressionImpl...

7.5CVSS7.8AI score0.00559EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:34 a.m.11 views

CVE-2024-41588

The CGI endpoints v2x00.cgi and cgiwcg.cgi of DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to buffer overflows, by authenticated users, because of missing bounds checking on parameters passed through POST requests to the strncpy function...

8CVSS7.1AI score0.00319EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.6 views

CVE-2022-37910

A buffer overflow vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in a denial of service on the affected system...

6.5CVSS7.3AI score0.00569EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:10 a.m.5 views

CVE-2017-18707

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R8300 before 1.0.2.106 and R8500 before 1.0.2.106...

6.8CVSS7.3AI score0.00507EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:2 a.m.6 views

CVE-2023-25111

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS8AI score0.0146EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:2 a.m.10 views

CVE-2023-25119

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS8.1AI score0.0146EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.11 views

CVE-2023-25088

Multiple buffer overflow vulnerabilities exist in the vtyshubus binary of Milesight UR32L v32.3.0.5 due to the use of an unsafe sprintf pattern. A specially crafted HTTP request can lead to arbitrary code execution. An attacker with high privileges can send HTTP requests to trigger these...

7.2CVSS8.1AI score0.0146EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.8 views

CVE-2023-43314

UNSUPPORTED WHEN ASSIGNED The buffer overflow vulnerability in the Zyxel PMG2005-T20B firmware version V1.00ABNK.2b11C0 could allow an unauthenticated attacker to cause a denial of service condition via a crafted uid...

7.5CVSS7.7AI score0.00655EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:58 a.m.8 views

CVE-2023-45616

There is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of this vulnerabilit...

9.8CVSS8.7AI score0.02132EPSS
Exploits0References1
Rows per page
Query Builder