Lucene search
K

253678 matches found

Cvelist
Cvelist
added 2026/05/04 4:43 p.m.33 views

CVE-2026-25293 Incorrect authorization in PLC FW

Buffer overflow due to incorrect authorization in PLC FW...

9.6CVSS0.00182EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/04 3:29 p.m.9 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow in the AddBinaryProperty function of the FBX Importer, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation. An attacker can achieve...

9.8CVSS6.4AI score0.00383EPSS
Exploits0References2
IBM AIX
IBM AIX
added 2026/05/04 3:13 p.m.10 views

Multiple vulnerabilities impact AIX due to OpenSSL

IBM SECURITY ADVISORY First Issued: Mon May 4 15:13:40 CDT 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/openssladvisory47.asc Security Bulletin: Multiple vulnerabilities impact AIX due to OpenSSL...

9.8CVSS7.4AI score0.00981EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/04 2:31 p.m.10 views

pyOpenSSL: DTLS cookie callback buffer overflow

A flaw was found in pyOpenSSL. The setcookiegeneratecallback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a...

9.8CVSS6AI score0.00704EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/05/04 2:25 p.m.10 views

freeipmi: buffer overflows on response messages via ipmi-oem

A flaw was found in FreeIPMI. The ipmi-oem program is used to send Intelligent Platform Management Interface IPMI OEM commands for specific hardware vendors to retrieve specific information from the hardware. A malicious server can reply with crafted response messages and cause buffer overflows...

7.5CVSS5.8AI score0.00403EPSS
Exploits0References8
OSV
OSV
added 2026/05/04 2:16 p.m.4 views

DEBIAN-CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 2:16 p.m.16 views

CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

9.8CVSS0.00383EPSS
Exploits0References3
OSV
OSV
added 2026/05/04 2:16 p.m.4 views

UBUNTU-CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/04 2:16 p.m.6 views

CVE-2025-70067

Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a property key string from a crafted FBX file is copied into a fixed-size heap buffer using strcpy without runtime length validation...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/04 2:10 p.m.22 views

Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.6 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

9.8CVSS7.1AI score0.01402EPSS
Exploits6References14
RedHat Linux
RedHat Linux
added 2026/05/04 2:10 p.m.7 views

pyOpenSSL: DTLS cookie callback buffer overflow

A flaw was found in pyOpenSSL. The setcookiegeneratecallback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a...

9.8CVSS6AI score0.00704EPSS
Exploits0References7
OSV
OSV
added 2026/05/04 1:12 p.m.5 views

JLSEC-2026-422 When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses...

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the CURLOPTACCEPTENCODING option, using zlib 1.2.0.3 or older, an attacker-controlled integer overflow would make libcurl perform a buffer overflow...

7.3CVSS7.2AI score0.01168EPSS
Exploits1References11
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 12:18 p.m.13 views

Security Bulletin: pyOpenSSL TLS SNI Callback Exception Handling Flaw Allows Security Bypass

Summary pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this...

9.8CVSS5.9AI score0.00704EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/05/04 10:16 a.m.34 views

CVE-2026-7749

A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument priDns leads to buffer overflow. The attack may be initiated remotely. The...

9CVSS0.00563EPSS
Exploits0References5
NVD
NVD
added 2026/05/04 10:16 a.m.16 views

CVE-2026-7750

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS0.00463EPSS
Exploits0References5
NVD
NVD
added 2026/05/04 9:16 a.m.11 views

CVE-2026-7747

A security flaw has been discovered in Totolink N300RH 3.2.4-B20220812. Affected by this vulnerability is the function loginauth of the file /cgi-bin/cstecgi.cgi of the component Parameter Handler. Performing a manipulation of the argument Password results in buffer overflow. The attack can be...

10CVSS0.00606EPSS
Exploits0References5
CVE
CVE
added 2026/05/04 9:8 a.m.43 views

CVE-2026-33846

GnuTLS DTLS handshake fragment reassembly (merge_handshake_packet) fails to enforce consistent message_length across fragments, enabling a heap-based out-of-bounds write when fragments with conflicting lengths are received. This remote, unauthenticated vulnerability can cause application crashes ...

7.5CVSS6.1AI score0.01263EPSS
Exploits0References16
Cvelist
Cvelist
added 2026/05/04 9:0 a.m.36 views

CVE-2026-7750 Totolink N300RH POST Request cstecgi.cgi setMacFilterRules buffer overflow

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS0.00463EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/04 9:0 a.m.5 views

CVE-2026-7750 Totolink N300RH POST Request cstecgi.cgi setMacFilterRules buffer overflow

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS6.2AI score0.00463EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/04 9:0 a.m.10 views

EUVD-2026-26942

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS6.2AI score0.00463EPSS
Exploits0References5
Rows per page
Query Builder