470 matches found
CVE-2023-41119
An issue was discovered in EnterpriseDB Postgres Advanced Server EPAS before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. It contains the function dbmsaqmovetoexceptionqueue that may be used to elevate a user's privileges to superuser. This...
CVE-2023-39520
Cryptomator encrypts data being stored on cloud infrastructure. The MSI installer provided on the homepage for Cryptomator version 1.9.2 allows local privilege escalation for low privileged users, via the repair function. The problem occurs as the repair function of the MSI is spawning an SYSTEM...
CVE-2023-46560
TOTOLINK X2000R Gh v1.0.0-B20230221.0948.web was discovered to contain a stack overflow via the function formTcpipSetup...
CVE-2023-45929
S-Lang 2.3.2 was discovered to contain a segmentation fault via the function fixuptgetstr...
CVE-2023-30065
MitraStar GPT-2741GNAC-N2 with firmware BRg5.91.11WVK.0b32 was discovered to contain a remote code execution RCE vulnerability in the ping function...
CVE-2022-47012
Use of uninitialized variable in function genethrecv in GNS3 dynamips 0.2.21...
CVE-2022-45667
Tenda i22 V1.0.0.34687 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolRestoreSet...
CVE-2022-37817
Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow via the function fromSetIpMacBind...
CVE-2022-36493
H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function SetAPWifiorLedInfoById...
CVE-2022-32032
Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the deviceList parameter in the function formAddMacfilterRule...
CVE-2022-32052
TOTOLINK T6 V4.1.9cu.5179B20201015 was discovered to contain a stack overflow via the desc parameter in the function FUN004137a4...
CVE-2022-45712
IP-COM M50 V15.11.0.3310768 was discovered to contain a buffer overflow via the rules parameter in the formAddDnsForward function...
CVE-2022-29392
TOTOLINK N600R V4.3.0cu.7647B20210106 was discovered to contain a stack overflow via the comment parameter in the function FUN00418c24...
CVE-2022-29395
TOTOLINK N600R V4.3.0cu.7647B20210106 was discovered to contain a stack overflow via the apcliKey parameter in the function FUN0041bac4...
CVE-2021-29532
TensorFlow is an end-to-end open source platform for machine learning. An attacker can force accesses outside the bounds of heap allocated arrays by passing in invalid tensor values to tf.rawops.RaggedCross. This is because the...
CVE-2021-39561
An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function Gfx::opSetFillColorN located in Gfx.cc. It allows an attacker to cause code Execution...
CVE-2021-45297
An infinite loop vulnerability exists in Gpac 1.0.1 in gfgetbitsize...
CVE-2021-21813
Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to memcpy copying the path provided by the user into a staticly sized buffer without any length checks resulting in a stack-buffer overflo...
CVE-2020-23151
rConfig 3.9.5 allows command injection by sending a crafted GET request to lib/ajaxHandlers/ajaxArchiveFiles.php since the path parameter is passed directly to the exec function without being escaped...
CVE-2025-44888
FW-WGS-804HPT v1.305b241111 was discovered to contain a stack overflow via the stpconfname parameter in the webstpglobalSettingpost function...