Uncontrolled Recursion

@nestjs/microservices is vulnerable to Uncontrolled Recursion. The vulnerability is due to recursive processing of multiple JSON messages in a single TCP frame without proper recursion limits, which allows an attacker to trigger a stack overflow and crash the application...

CVE-2025-54328

An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. A Stack-based Buffer Overflow occurs while parsing SMS RP-DA...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003391)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003391 advisory. The rdsincinfocopy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obta...

EUVD-2025-204395

Out-of-bounds read CWE-125 allows an unauthenticated remote attacker to perform a buffer overflow CAPEC-100 via the NFS protocol dissector, leading to a denial-of-service DoS through a reliable process crash when handling truncated XDR-encoded RPC messages...

EUVD-2022-35595

Malicious code in bioql PyPI...

EUVD-2022-35596

Malicious code in bioql PyPI...

Talking Transactions: Decentralized Communication through Ethereum Input Data Messages (IDMs)

Can you imagine, blockchain transactions can talk! In this paper, we study how they talk and what they talk about. We focus on the input data field of Ethereum transactions, which is designed to allow external callers to interact with smart contracts. In practice, this field also enables users to...

CVE-2022-32524

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted time reduced data messages. Affected Products: IGSS Data Server - IGSSdataServer.exe...

PT-2022-3197 · Unknown · Igss Data Server

Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions prior to V15.0.0.22170 Description: The issue is related to a buffer copy without checking the size of input data, which could cause a stack-based buffer overflow. This might lead to remote code execution when an...

PT-2022-3198 · Unknown · Igss Data Server

Name of the Vulnerable Software and Affected Versions: IGSS Data Server versions prior to V15.0.0.22170 Description: The issue is related to a buffer copy without checking the size of input data, which could cause a stack-based buffer overflow. This might lead to remote code execution when an...

PT-2022-3182 · Unknown · Igss Data Server

Name of the Vulnerable Software and Affected Versions: IGSS Data Server - IGSSdataServer.exe versions prior to V15.0.0.22170 Description: A buffer copy without checking the size of input vulnerability exists, potentially leading to a stack-based buffer overflow and remote code execution when an...

kernel: bpf, sockmap: Fix repeated calls to sock_put() when msg has more_data

A reference-count flaw was found in the Linux kernel Berkeley Packet Filter BPF sockmap implementation. When processing messages with remaining data, the same Transmission Control Protocol TCP socket reference could be released more than once. A local user running BPF sockmap programs could use...