Lucene search
K

202 matches found

OSV
OSV
added 2024/06/07 10:49 p.m.24 views

CVE-2024-0444 GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.5CVSS7.7AI score0.01559EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2024/06/07 10:49 p.m.29 views

CVE-2024-0444

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

8.8CVSS8AI score0.01559EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2024/05/09 12:0 a.m.22 views

Dassault Systèmes eDrawings Viewer JT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS7.2AI score0.00338EPSS
Exploits0References1
CVE
CVE
added 2024/05/07 10:54 p.m.83 views

CVE-2021-34982

The CVE-2021-34982 entry describes a pre-auth, remote code execution vulnerability in the httpd service of NETGEAR routers. The flaw is a stack-based buffer overflow caused by unchecked length of user-supplied data in the strings file, leading to code execution with root privileges when a network...

8.8CVSS9.1AI score0.00576EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/05/03 3:15 a.m.13 views

CVE-2023-44429

GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

8.8CVSS8.9AI score0.02189EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.4 views

CVE-2023-42039

Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.2AI score0.00351EPSS
Exploits0References1
NVD
NVD
added 2024/05/03 2:15 a.m.19 views

CVE-2023-32144

D-Link DAP-1360 webproc COMMMakeCustomMsg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this...

8.8CVSS9.1AI score0.01038EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:15 a.m.63 views

CVE-2023-51566

Kofax Power PDF is affected by an OXPS file parsing vulnerability described as a stack-based buffer overflow that can lead to Remote Code Execution. The flaw results from inadequate validation of the length of user-supplied data before copying it into a fixed-length stack buffer during OXPS parsi...

7.8CVSS8.1AI score0.0087EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 2:14 a.m.109 views

CVE-2023-50229

CVE-2023-50229 affects BlueZ PBAP heap-based buffer overflow. Affects BlueZ with PBAP handling; vulnerability allows remote code execution by network-adjacent attackers, requiring the target to connect to a malicious Bluetooth device. Some connected advisories indicate patches are available (e.g....

8CVSS7.1AI score0.0229EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/03 2:14 a.m.29 views

CVE-2023-50186 GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.5CVSS7.6AI score0.01534EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:13 a.m.41 views

CVE-2023-44431 BlueZ Audio Profile AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability

BlueZ Audio Profile AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target...

7.1CVSS8.1AI score0.01563EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:13 a.m.26 views

CVE-2023-44431 BlueZ Audio Profile AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability

BlueZ Audio Profile AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target...

7.1CVSS7.4AI score0.01563EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2024/05/03 2:13 a.m.30 views

CVE-2023-44429

GStreamer AV1 Codec Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

8.8CVSS8.6AI score0.02189EPSS
Exploits0
Cvelist
Cvelist
added 2024/05/03 2:10 a.m.27 views

CVE-2023-39494 PDF-XChange Editor OXPS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

PDF-XChange Editor OXPS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

7.8CVSS8.3AI score0.00338EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 1:58 a.m.62 views

CVE-2023-35754

CVE-2023-35754 affects D-Link DAP-2622 routers, via a stack-based buffer overflow in the DDP Set AG Profile NMS URL. The flaw arises from improper validation of user-supplied data length before copying to a fixed-length stack buffer, allowing network-adjacent attackers to execute code with root p...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 1:57 a.m.61 views

CVE-2023-35725

CVE-2023-35725 affects D-Link DAP-2622 devices via a stack-based buffer overflow in the DDP service. The vulnerability arises from improper validation of user-supplied data length before copying to a fixed-length stack buffer, enabling network-adjacent attackers to execute code with root privileg...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/05/03 1:56 a.m.77 views

CVE-2023-32146

CVE-2023-32146 affects D-Link DAP-1360 devices. Root cause: a stack-based buffer overflow in /cgi-bin/webproc when parsing the errorpage and nextpage parameters, copying data into a fixed-length buffer. This allows remote, network-adjacent attackers (no authentication) to execute code with root p...

8.8CVSS9.1AI score0.01101EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/30 11:1 p.m.10 views

CVE-2024-4192 Stack-based Buffer Overflow vulnerability in Delta Electronics CNCSoft-G2 DOPSoft

Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7.2AI score0.00322EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/04/19 12:0 a.m.25 views

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of metadata...

7.5CVSS7.5AI score0.01534EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 11:4 a.m.25 views

BIT-MYSQL-CLIENT-2022-24052

MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS8.1AI score0.00689EPSS
Exploits0References7
Rows per page
Query Builder