Lucene search
K

154 matches found

CNNVD
CNNVD
added 2023/03/29 12:0 a.m.3 views

D-Link DIR-1935 安全漏洞

The D-Link DIR-1935 is a wireless router from China-based D-Link. A security vulnerability exists in the D-Link DIR-1935 that arises from parsing the SOAPAction header without properly validating the length of user-supplied data before copying it into a fixed-length buffer...

8.8CVSS8AI score0.01006EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.4 views

D-Link DIR-1935 安全漏洞

The D-Link DIR-1935 is a wireless router from China-based D-Link. A security vulnerability exists in the D-Link DIR-1935 that originates when parsing the HNAPAUTH header, where the process does not properly validate the length of user-supplied data before copying it into a fixed-length buffer...

8.8CVSS8AI score0.01006EPSS
Exploits0References3
Prion
Prion
added 2023/03/28 7:15 p.m.39 views

Stack overflow

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the setfilparams function. The issue results from the lack of proper validation of the length o...

7.5CVSS9.6AI score0.04446EPSS
Exploits0References5Affected Software2
Zero Day Initiative
Zero Day Initiative
added 2023/03/16 12:0 a.m.27 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS7.7AI score0.02713EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/03/16 12:0 a.m.27 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS7.7AI score0.00217EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/01/18 12:0 a.m.46 views

Microsoft 3D Builder GLB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft 3D Builder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

6.6CVSS7.5AI score0.00939EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/12/15 12:0 a.m.32 views

Microsoft Excel SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP...

7.8CVSS5.4AI score0.008EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/09/14 12:0 a.m.27 views

Adobe InDesign PCX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PCX...

7.8CVSS5.7AI score0.00475EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/07/11 12:0 a.m.14 views

Linux Kernel LightNVM Subsystem Heap-based Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the LightNVM subsystem...

8.2CVSS5.1AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/05/27 12:0 a.m.21 views

Cisco RV340 JSON RPC set-snmp Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling o...

4.3CVSS3.9AI score0.02021EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/05 12:0 a.m.27 views

Omron CX-One CX-Position NCI File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of NCI...

7.8CVSS5.7AI score0.01985EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/02/16 12:0 a.m.33 views

MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL queries. The issue results from the lack of proper validation of the length of...

7CVSS4.5AI score0.00645EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/02/01 12:0 a.m.53 views

Samba AppleDouble Entry Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of AppleDouble entries. The issue results from the lack of proper validation of the...

9.8CVSS3.1AI score0.74042EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2022/01/27 12:0 a.m.22 views

WECON LeviStudioU UMP File Parsing BaseSet Tag BgOnOffBitAddr Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of WECON LeviStudioU. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.6AI score0.09285EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/01/17 12:0 a.m.37 views

TP-Link TL-WA1201 DNS Response Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link TL-WA1201 wireless access points. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS responses. A crafted DNS message can trigge...

8.8CVSS4.5AI score0.07743EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/12/21 12:0 a.m.39 views

Microsoft Windows tcpip.sys Heap-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the tcpip.sys...

8.8CVSS8.4AI score0.00901EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/12/03 12:0 a.m.15 views

OpenText Brava! Desktop SLDDRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS5.6AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/12/03 12:0 a.m.14 views

OpenText Brava! Desktop DWF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS5.8AI score
Exploits0
CNVD
CNVD
added 2021/11/01 12:0 a.m.12 views

NETGEAR R6260 mini_httpd SOAP buffer overflow vulnerability

NETGEAR R6260 is a router device. A security vulnerability exists in NETGEAR R6260 routers, which stems from the device's failure to properly validate the length of user-supplied data before copying it to a fixed-length buffer, which could be exploited by an attacker to execute code in the root...

8.8CVSS6.2AI score0.01374EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/10/28 12:0 a.m.18 views

Fuji Electric Tellus Lite V-Simulator X1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.00981EPSS
Exploits0References1
Rows per page
Query Builder