CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/31 12:0 a.m.•6 views

PT-2026-45200

A vulnerability has been found in Tenda W12 3.0.0.74763. This vulnerability affects the function cgiSysTimeInfoSet of the file /bin/httpd. The manipulation of the argument sec leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

9CVSS7.8AI score0.00092EPSS

Exploits0References7

Positive Technologies•added 2026/05/31 12:0 a.m.•9 views

PT-2026-45163

A weakness has been identified in TRENDnet TEW-432BRP 3.10B20. Affected by this vulnerability is the function formSysLog of the file /goform/formSysLog. This manipulation of the argument current page causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been ma...

9CVSS7.9AI score0.00046EPSS

Exploits0References5

Positive Technologies•added 2026/05/31 12:0 a.m.•7 views

PT-2026-45167

A vulnerability was found in Edimax BR-6478AC 1.23. Impacted is the function formUSBFolder of the file /goform/formUSBFolder of the component POST Request Handler. The manipulation of the argument ShareName/SelectName results in buffer overflow. The attack can be executed remotely. The exploit ha...

9CVSS7.7AI score0.00046EPSS

Exploits0References5

Positive Technologies•added 2026/05/31 12:0 a.m.•9 views

PT-2026-45217

Name of the Vulnerable Software and Affected Versions Assimp versions prior to 6.0.5 Description A heap-based buffer overflow occurs in the 4x4 Matrix Parser component within the glTFCommon.h library. The issue is located in the glTFCommon::CopyValue function. A local attacker can trigger this...

5.3CVSS6.2AI score0.00014EPSS

Exploits0References8

OSV•added 2026/05/30 6:3 p.m.•18 views

RLSA-2026:21391 Important: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modproxyajp: heap-based buffer over-read and memory disclosure in ajpparsedata CVE-2026-34059 httpd: modproxyajp: heap-based buffer over-read due to missing null-termination...

8.2CVSS6.3AI score0.00648EPSS

Exploits0References6

NVD•added 2026/05/30 4:17 p.m.•11 views

CVE-2026-10122

A vulnerability has been found in TRENDnet TEW-432BRP 3.10B20. This affects the function formSetProtocolFilter of the file /goform/formSetProtocolFilter. Such manipulation of the argument protocolname leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has...

NVD•added 2026/05/30 4:17 p.m.•13 views

CVE-2026-10123

A vulnerability was found in TRENDnet TEW-432BRP 3.10B20. This impacts the function formSetDomainFilter of the file /goform/formSetDomainFilter. Performing a manipulation of the argument blockeddomain/permitteddomain/blockeddomainlist/permitteddomainlist results in stack-based buffer overflow. It...

NVD•added 2026/05/30 4:17 p.m.•12 views

CVE-2026-10121

A flaw has been found in TRENDnet TEW-432BRP 3.10B20. The impacted element is the function formSetUrlFilter of the file /goform/formSetUrlFilter. This manipulation of the argument keywordlist/keyword causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploi...

NVD•added 2026/05/30 4:17 p.m.•11 views

CVE-2018-25423

Arm Whois 3.11 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a malicious buffer of 700 bytes into the IP address or domain input field to trigger a denial of service condition...

6.9CVSS0.00015EPSS

NVD•added 2026/05/30 4:17 p.m.•19 views

CVE-2018-25426

WinMTR 0.91 contains a denial of service vulnerability that allows attackers to crash the application by sending a malformed payload file containing a large buffer of repeated characters. Attackers can create a specially crafted input file with 238 bytes of data to trigger a buffer overflow...

8.7CVSS0.00086EPSS

Exploits1References4

CVE•added 2026/05/30 4:15 p.m.•15 views

CVE-2026-10126

Edimax BR-6478AC firmware 1.23 has a vulnerability in the POST Request Handler, specifically the formQoS function (/goform/formQoS). Manipulating the selSSID argument causes a buffer overflow, enabling a remote attacker. Public exploit exists. The provided sources do not specify a patched version...

Vulnrichment•added 2026/05/30 4:15 p.m.•7 views

CVE-2026-10126 Edimax BR-6478AC POST Request formQoS buffer overflow

A security flaw has been discovered in Edimax BR-6478AC 1.23. Affected by this issue is the function formQoS of the file /goform/formQoS of the component POST Request Handler. The manipulation of the argument selSSID results in buffer overflow. The attack can be launched remotely. The exploit has...

Cvelist•added 2026/05/30 4:15 p.m.•29 views

CVE-2026-10126 Edimax BR-6478AC POST Request formQoS buffer overflow

ATTACKERKB•added 2026/05/30 4:15 p.m.•8 views

CVE-2026-10126

Exploits0References4Affected Software1

EUVD•added 2026/05/30 4:15 p.m.•7 views

EUVD-2026-33469

9CVSS6.2AI score0.00046EPSS

EUVD•added 2026/05/30 3:45 p.m.•8 views

EUVD-2026-33467

A vulnerability was determined in Shibby Tomato up to 1.28. Affected is the function ripzebrareadipv4 of the file /usr/sbin/ripd of the component Zserv Handler. Executing a manipulation can lead to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been...

9CVSS7.7AI score0.00046EPSS

EUVD•added 2026/05/30 3:0 p.m.•8 views

EUVD-2026-33463

ATTACKERKB•added 2026/05/30 3:0 p.m.•8 views

CVE-2026-10121