Buffer overflow in the ngx_http_rewrite_module

Buffer overflow in the ngxhttprewritemodule Severity: medium CVE-2026-42945 Not vulnerable: 1.31.0+, 1.30.1+ Vulnerable: 0.6.27-1.30.0...

K000161056: BIG-IP APM vulnerability CVE-2026-40067

Security Advisory Description When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. CVE-2026-40067 Impact Traffic is disrupted while the apmd process restarts. This vulnerability allows an unauthenticated attacker to cause ...

freerdp security update

An update is available for freerdp. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRDP is a free implementation of the Remote Desktop Protocol RDP, release...

RLSA-2026:15969 Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: GLib: Buffer underflow...

Exploit for CVE-2025-29338

CVE-2025-29338 — Security Advisory Buffer Overflow in NXP...

CVE-2025-62623

A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution...

SUSE CVE-2026-5172

A buffer overflow in dnsmasq's extractaddresses function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extractname to advance the pointer past the record's end...

SUSE CVE-2026-42859

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 RSA-AES or security type 129 RSA-AES-25...

freerdp: FreeRDP: Denial of Service via crafted audio data in RDP

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A remote attacker can exploit a sizet underflow vulnerability in the IMA-ADPCM and MS-ADPCM audio decoders by sending specially crafted audio data over the RDPSND audio channel. This underflow leads to a...

CVE-2024-51394

Buffer Overflow vulnerability in Ardupiot Copter Latest commit 92693e023793133e49a035daf37c14433e484778 allows a local attacker to cause a denial of service via the APMSP::loop, APMSP, APMSP.cpp components...

CVE-2024-48519

Buffer Overflow vulnerability in Ardupilot rover commit v.c56439b045162058df0ff136afea3081fcd06d38 allows a local attacker to cause a denial of service via the APInertialSensorADIS1647x.cpp, ArduRover, ADIS1647x Sensor component...

Striso Control Firmware 安全漏洞

Striso Control Firmware is an open-source MPE MIDI controller firmware developed by Striso. Version 54c9722 of Striso Control Firmware contains a security vulnerability, which stems from a buffer overflow in the AuxJack function...

CVE-2024-55045

Firmament-Autopilot FMT-Firmware commit de5aec was discovered to contain a buffer overflow via the taskmavobcentry function at /comm/taskcomm.c...

Firmament 安全漏洞

Firmament is an open-source autonomous pilot system developed by Firmament-Autopilot. There is a security vulnerability in Firmament, which stems from a buffer overflow in the taskmavobcentry function located in /comm/taskcomm.c...

NXP moal.ko Wi-Fi driver 安全漏洞

NXP moal.ko Wi-Fi driver is a Wi-Fi kernel driver module developed by NXP for Linux-based wireless network devices, focusing on communication and hardware control. There is a security vulnerability in the NXP moal.ko Wi-Fi driver, which stems from a buffer overflow in the modpara parameter of the...

CVE-2025-28343

CVE-2025-28343 affects striso-control-firmware 54c9722. The issue is a buffer overflow in the function ThreadReadButtons. CVSSv3.1 base score 7.5 (HIGH): attack vector NETWORK, attack complexity LOW, privileges required NONE, user interaction NONE, with confidentiality and integrity not impacted ...

CVE-2024-48519

Buffer Overflow vulnerability in Ardupilot rover commit v.c56439b045162058df0ff136afea3081fcd06d38 allows a local attacker to cause a denial of service via the APInertialSensorADIS1647x.cpp, ArduRover, ADIS1647x Sensor component...

Palo Alto Networks PAN-OS 10.2.x / 11.1.x / 11.2.x / 12.1.x Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is a vulnerable version of 10.2.x, 11.1.x, 11.2.x, or 12.1.x. It is, therefore, affected by a vulnerability. A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS Software allows an...

Palo Alto Networks PAN-OS 缓冲区错误漏洞

Palo Alto Networks PAN-OS is an operating system developed by Palo Alto Networks for its firewall devices. There is a buffer overflow vulnerability in Palo Alto Networks PAN-OS, which stems from a buffer overflow during IKEv2 processing. This vulnerability could allow unauthenticated network...

ArduPilot Project 缓冲区错误漏洞

The ArduPilot Project is an open-source autopilot software developed by ArduPilot, supporting control of various unmanned vehicles. The ArduPilot Project has a buffer overflow vulnerability, which stems from buffer overflows in the APMSP::loop, APMSP, and APMSP.cpp components. This vulnerability...