CVE-2021-32298

An issue was discovered in libiff through 20190123. A global-buffer-overflow exists in the function IFFerrorId located in error.c. It allows an attacker to cause code Execution...

CVE-2020-25189

The affected product is vulnerable to three stack-based buffer overflows, which may allow an unauthenticated attacker to remotely execute arbitrary code on the IP150 firmware versions 5.02.09...

CVE-2025-3482

MedDream PACS Server DICOM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of MedDream PACS Server. Authentication is not required to exploit this vulnerability. The specif...

CVE-2025-3887

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

CVE-2025-3887 GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

PT-2025-20955 · Microsoft · Windows Media +1

Name of the Vulnerable Software and Affected Versions: Windows Media affected versions not specified Description: The issue is related to a stack-based buffer overflow in Windows Media, which can be exploited by a remote attacker to execute arbitrary code over a network. This could allow...

Amazon Linux 2 : qt5-qt3d (ALAS-2025-2848)

The version of qt5-qt3d installed on the remote host is prior to 5.15.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2848 advisory. An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function...

D-Link DIR-619L wan_connected buffer overflow vulnerability

The D-Link DIR-619L is a cost-effective wireless router designed for home office Internet needs. The D-Link DIR-619L suffers from a buffer overflow vulnerability that stems from the improper handling of the wanconnected parameter in the formEasySetupWizard3 function, which can be exploited by an...

CVE-2025-3711

The CVE-2025-3711 entry concerns the ATEN LCD KVM over IP Switch CL5708IM. Reported as a stack-based buffer overflow in firmware versions prior to v2.2.215, it allows unauthenticated remote attackers to execute arbitrary code on the device. Several connected sources corroborate a network-exposed ...

PT-2025-20462

Name of the Vulnerable Software and Affected Versions CL5708IM affected versions not specified Description The issue is a Stack-based Buffer Overflow, allowing unauthenticated remote attackers to execute arbitrary code on the device. Recommendations At the moment, there is no information about a...

Tenda AC9 /goform/WifiBasicSet Interface Buffer Overflow Vulnerability

Tenda AC9 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda AC9 version V15.03.05.14multi, which originates from the /goform/WifiBasicSet security parameter that fails to properly validate the length of the input data, and can be exploited by a...

AlmaLinux 8 : ghostscript (ALSA-2025:4362)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:4362 advisory. ghostscript: heap buffer over write vulnerability in GhostScript's lp8000printpage in gdevlp8k.c CVE-2020-27792 ghostscript: dangling pointer in...

CVE-2025-1049 Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability

Sonos Era 300 Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sonos Era 300 speakers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2025-27481

Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network...

CVE-2025-30298 Adobe Framemaker | Stack-based Buffer Overflow (CWE-121)

Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Adobe Media Encoder < 24.6.5 / 25.0 < 25.2 Multiple Arbitrary code execution (APSB25-24) (macOS)

The version of Adobe Media Encoder installed on the remote macOS host is prior to 24.6.5, 25.2. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB25-24 advisory. - Heap-based Buffer Overflow CWE-122 potentially leading to Arbitrary code execution CVE-2025-27195 -...

(0Day) Luxion KeyShot DAE File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of dae...

Tenda AC8 Buffer Overflow Vulnerability (CNVD-2025-09167)

Tenda AC8 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in the Tenda AC8, which stems from a buffer overflow vulnerability in the shareSpeed parameter of the sub47D878 function, which can be exploited by an attacker to execute arbitrary code...

Linux Distros Unpatched Vulnerability : CVE-2022-1629

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Over-read in function findnextquote in GitHub repository vim/vim prior to 8.2.4925. This vulnerabilities are capable of crashing software, Modify Memory,...

Linux Distros Unpatched Vulnerability : CVE-2016-2226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the stringappends function in cplus-dem.c in libiberty allows remote attackers to execute arbitrary code via a crafted executable, which...