Lucene search
K

253620 matches found

Snyk
Snyk
added 2026/05/12 3:23 p.m.9 views

Stack-based Buffer Overflow

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.7CVSS5.8AI score0.0013EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/12 3:23 p.m.6 views

Stack-based Buffer Overflow

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.7CVSS5.8AI score0.0013EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/12 3:23 p.m.7 views

Stack-based Buffer Overflow

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.7CVSS5.8AI score0.0013EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/12 3:23 p.m.7 views

Stack-based Buffer Overflow

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

6.7CVSS5.8AI score0.0013EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/12 2:21 p.m.16 views

CVE-2026-0300

A buffer overflow vulnerability in the User-ID™ Authentication Portal aka Captive Portal service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. T...

9.8CVSS6.4AI score0.36157EPSS
Exploits6References1
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.10 views

Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS6.1AI score0.00383EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.9 views

Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS6.1AI score0.00437EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.8 views

Windows TCP/IP Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00328EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/12 12:28 p.m.7 views

Security Bulletin: Buffer overflow vulnerability in OMR affect Rational Business Developer

Summary There are vulnerabilities in Eclipse OMR used by Rational Business Developer. Rational Business Developer has provided fixes for the applicable CVEs. Vulnerability Details CVEID:CVE-2026-1188 DESCRIPTION: In the Eclipse OMR port library component since release 0.2.0, an API function to...

9.8CVSS7.6AI score0.00491EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/05/12 8:52 a.m.4 views

BIT-PGBOUNCER-2026-6665 PgBouncer buffer overflow in SCRAM

The SCRAM code in PgBouncer before 1.25.2 did not check the return value of strlcat correctly when building the contents of the SCRAM client-final-message. A malicious backend that sends a SCRAM server-final-message with a long nonce can trigger a stack overflow...

9.8CVSS6AI score0.00372EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/12 8:20 a.m.8 views

CVE-2026-8260

A vulnerability was found in D-Link DCS-935L up to 1.10.01. The impacted element is the function SetDeviceSettings of the file /web/cgi-bin/hnap/hnapservice of the component HNAP Service. The manipulation of the argument AdminPassword results in buffer overflow. The attack can be executed remotel...

9CVSS7.6AI score0.00997EPSS
Exploits2References1
NVD
NVD
added 2026/05/12 4:16 a.m.40 views

CVE-2026-7287

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS0.00309EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 3:56 a.m.19 views

CVE-2026-7287

The CVE affects Zyxel NWA1100-N customized firmware 1.00(AACE.1)C0, specifically the webs binary and its functions formWep(), formWlAc(), formPasswordSetup(), formUpgradeCert(), and formDelcert(). The root cause is a buffer overflow in these functions, which could allow an attacker to trigger a d...

7.5CVSS6AI score0.00309EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/12 3:56 a.m.8 views

CVE-2026-7287

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS6AI score0.00309EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 3:56 a.m.61 views

CVE-2026-7287

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS0.00309EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 3:56 a.m.7 views

CVE-2026-7287

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS6AI score0.00309EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.11 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability, which was caused by an out-of-bounds write issue in the WebAudio component. This vulnerability could allow remote attackers to execute arbitrary cod...

8.8CVSS6.5AI score0.00383EPSS
Exploits0References3
Redos
Redos
added 2026/05/12 12:0 a.m.7 views

ROS-20260512-73-0005

A vulnerability in the ngxhttpdavmodule module of the NGINX Plus and NGINX Open Source HTTP server is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

8.8CVSS6.1AI score0.21621EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.8 views

PT-2026-40133

Name of the Vulnerable Software and Affected Versions .NET affected versions not specified Description A heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. A heap-based buffer overflow occurs when an application writes more data to a heap-allocated...

7.3CVSS6AI score0.00551EPSS
Exploits0References25
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.7 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability. This vulnerability stemmed from an out-of-bound read operation in the FileSystem component, which could allow remote attackers who had been convince...

5.3CVSS6.1AI score0.00255EPSS
Exploits0References3
Rows per page
Query Builder