253506 matches found
CVE-2021-47970 Macaron Notes 5.5 Denial of Service via Buffer Overflow
Macaron Notes 5.5 contains a denial of service vulnerability that allows attackers to crash the application by creating notes with excessively long character strings. Attackers can generate a payload containing 350000 repeated characters and paste it into a note field to trigger application crash...
CVE-2020-37234
Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...
CVE-2020-37234
CVE-2020-37234 concerns Internet Download Manager 6.38.12, where a buffer overflow in the Scheduler component allows local attackers to crash the application by feeding oversized input. Specifically, pasting data exceeding 5000 bytes into the 'Open the following file when done' field triggers a d...
CVE-2020-37234 Internet Download Manager 6.38.12 Scheduler Buffer Overflow
Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...
EUVD-2020-31238
Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...
CVE-2020-37234 Internet Download Manager 6.38.12 Scheduler Buffer Overflow
Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...
libyang: lyb_read_string() integer overflow → heap buffer overflow
...
CLSA-2026-1778895590 nginx: Fix of CVE-2026-42945
CVE-2026-42945: fix heap buffer overflow in ngxhttprewritemodule...
SUSE CVE-2026-43906
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a heap-based buffer overflow in the HEIF decoder of OpenImageIO allows out-of-bounds writes via crafted images due to a subimage metada...
Chromium: CVE-2026-8531 Heap buffer overflow in WebML
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
OSV-2026-748 Heap-buffer-overflow in p11_lexer_next
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=513102821 Crash type: Heap-buffer-overflow READ 2 Crash state: p11lexernext p11persistread p11parserformatpersist...
OSV-2026-741 Heap-buffer-overflow in p11_lexer_next
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=513100838 Crash type: Heap-buffer-overflow READ 2 Crash state: p11lexernext conffuzzer.c...
Tonec Fze Internet Download Manager 安全漏洞
Tonec Fze Internet Download Manager Idm is a tool developed by the American company Tonec Fze that can increase download speed by up to 5 times and helps to resume and schedule downloads. Version 6.38.12 of Tonec Fze Internet Download Manager contains a security vulnerability. This vulnerability...
PT-2026-41434
Internet Download Manager 6.38.12 contains a buffer overflow vulnerability in the Scheduler component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data exceeding 5000 bytes into the 'Open the following file when done' field to...
SUSE SLES15 Security Update : firebird (SUSE-SU-2026:1868-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1868-1 advisory. This update for firebird fixes the following issues - CVE-2025-65104: Information leak vulnerability in firebird3 client when used with newer =...
ROS-20260516-73-0001
A vulnerability in the xfrm components of the Linux kernel is related to an operation exceeding buffer boundaries. Exploitation of the vulnerability could allow an attacker to elevate his privileges to root level...
CVE-2026-44673
A flaw was found in libyang, a YANG data modeling language library. An integer overflow in the lybreadstring function can lead to a heap buffer overflow when parsing a maliciously crafted LYB binary blob. A remote attacker, by supplying this malicious LYB data to any libyang consumer such as a...
nginx: NGINX: Arbitrary Code Execution Vulnerability
A flaw was found in NGINX, specifically within the ngxhttprewritemodule. An unauthenticated attacker can exploit this vulnerability by sending crafted HTTP requests under specific rewrite configurations. This can lead to a heap buffer overflow in the NGINX worker process, which may result in...
CVE-2026-43905
A flaw was found in OpenImageIO. When processing a specially crafted JPEG2000 image file, an internal calculation for buffer size can result in an integer overflow. This leads to an undersized memory allocation, causing a heap overflow. An attacker could exploit this to potentially execute...
CVE-2026-43906
A flaw was found in OpenImageIO. A heap-based buffer overflow in the HEIF decoder allows a remote attacker to perform out-of-bounds writes by providing specially crafted images. This can lead to memory corruption and potentially allow the attacker to execute arbitrary code on the affected system...