CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

302568 matches found

CVE-2026-8796

Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input. In Perl/Decoder/srldecoder.c, srlreadobject and srlreadhash process a COPY tag, a back-reference whose target byte the decoder re-decodes as a fresh tag. When that target byte matches the SHORTBINARY...

8.1CVSS0.00014EPSS

Exploits0References3

NVD•added 2026/05/31 4:16 p.m.•6 views

CVE-2026-10189

A vulnerability has been found in Tenda W12 3.0.0.74763. This vulnerability affects the function cgiSysTimeInfoSet of the file /bin/httpd. The manipulation of the argument sec leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

9CVSS0.00092EPSS

Exploits0References6

NVD•added 2026/05/31 4:16 p.m.•11 views

CVE-2026-10191

A vulnerability was determined in Tenda W12 3.0.0.74763. Impacted is the function cgiWifiMacFilterSet of the file /bin/httpd. This manipulation of the argument wifiMacFilterSet.macList.mac causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been publicly...

9CVSS0.00092EPSS

Exploits0References6

ATTACKERKB•added 2026/05/31 4:0 p.m.•6 views

CVE-2026-10192

A vulnerability was identified in Tenda W12 3.0.0.74763. The affected element is the function setlocaltime0 of the file /bin/httpd. Such manipulation of the argument Time leads to stack-based buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...

9CVSS8AI score0.00092EPSS

Exploits0References6Affected Software1

Cvelist•added 2026/05/31 4:0 p.m.•24 views

CVE-2026-10192 Tenda W12 httpd set_local_time_0 stack-based overflow

9CVSS0.00092EPSS

Exploits0References6

EUVD•added 2026/05/31 4:0 p.m.•7 views

EUVD-2026-33514

9CVSS8AI score0.00092EPSS

Exploits0References6

EUVD•added 2026/05/31 3:45 p.m.•7 views

EUVD-2026-33513

9CVSS7.9AI score0.00092EPSS

Exploits0References6

EUVD•added 2026/05/31 3:0 p.m.•9 views

EUVD-2026-33511

9CVSS7.8AI score0.00092EPSS

Exploits0References6

EUVD•added 2026/05/31 2:30 p.m.•8 views

EUVD-2026-33510

A flaw has been found in Tenda W12 3.0.0.74763. This affects the function cgistaKickOff of the file /bin/httpd. Executing a manipulation of the argument staMac can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

9CVSS7.8AI score0.00092EPSS

Exploits0References6

ATTACKERKB•added 2026/05/31 2:15 p.m.•10 views

CVE-2026-10187

A vulnerability was detected in Totolink N300RH 6.1c.1353B20190305. Affected by this issue is the function setWiFiBasicConfig of the file wireless.so of the component Web Management Interface. Performing a manipulation of the argument KeyStr results in stack-based buffer overflow. The attack is...

10CVSS7.9AI score0.00192EPSS

Exploits1References7Affected Software1

CVE•added 2026/05/31 2:15 p.m.•13 views

CVE-2026-10187

The CVE-2026-10187 entry concerns Totolink N300RH (firmware 6.1c.1353_B20190305). The vulnerability affects the Web Management Interface’s file wireless.so in the setWiFiBasicConfig function; manipulating the argument KeyStr triggers a stack-based buffer overflow. This enables remote code executi...

10CVSS7.9AI score0.00192EPSS

Exploits1References7

EUVD•added 2026/05/31 11:0 a.m.•6 views

EUVD-2026-33499

A flaw has been found in TRENDnet TEW-432BRP 3.10B20. This issue affects the function formSetWlanEncrypt of the file /goform/formSetWlanEncrypt. This manipulation of the argument webpage causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been...

9CVSS7.8AI score0.00048EPSS

Exploits0References5

CVE•added 2026/05/31 11:0 a.m.•9 views

CVE-2026-10179

TRENDnet TEW-432BRP (firmware 3.10B20) contains a stack-based overflow in the formSetWlanEncrypt function at /goform/formSetWlanEncrypt. The issue can be triggered remotely and an exploit has been published. The vendor notes the product is EOL (since 2009), and states they cannot replicate or fix...

9CVSS6.2AI score0.00048EPSS

Exploits0References5

ATTACKERKB•added 2026/05/31 11:0 a.m.•8 views

CVE-2026-10179

9CVSS7.8AI score0.00048EPSS

Exploits0References5Affected Software1

GithubExploit•added 2026/05/31 9:11 a.m.•59 views

Exploit for CVE-2026-8836

CVE-2026-8836 — lwIP SNMPv3 Stack Overflow PoC Proof of conce...

10CVSS7.7AI score0.00286EPSS

Exploits1

NVD•added 2026/05/31 4:16 a.m.•9 views

CVE-2026-10164

A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit ha...

9CVSS0.00046EPSS

Exploits0References4

NVD•added 2026/05/31 4:16 a.m.•9 views

CVE-2026-10163

A vulnerability has been found in Edimax BR-6478AC 1.23. This issue affects the function formUSBAccount of the file /goform/formUSBAccount of the component POST Request Handler. The manipulation of the argument UserName/Password leads to buffer overflow. Remote exploitation of the attack is...

9CVSS0.00046EPSS

Exploits0References4

ATTACKERKB•added 2026/05/31 3:0 a.m.•8 views

CVE-2026-10165

A vulnerability was identified in Edimax BR-6478AC 1.23. The impacted element is the function formWanTcpipSetup of the file /goform/formWanTcpipSetup of the component POST Request Handler. Such manipulation of the argument pppUserName leads to stack-based buffer overflow. The attack may be...

9CVSS7.9AI score0.00046EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/31 3:0 a.m.•9 views

EUVD-2026-33485

9CVSS7.9AI score0.00046EPSS

Exploits0References4