Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

36 matches found

EUVD
EUVDadded 2026/05/21 12:47 a.m.10 views

EUVD-2026-31205

A missing authentication vulnerability exists in the Altium 365 SearchService. A legacy SOAP endpoint exposes search index operations without requiring authentication, session tokens, or any form of identity verification. An unauthenticated network attacker who can reference a target workspace's...

10CVSS5.8AI score0.00079EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2026/05/06 7:3 a.m.3 views

capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

9.8CVSS7.3AI score0.00038EPSS
Exploits0References6
CVE
CVEadded 2026/03/30 3:15 p.m.9 views

CVE-2026-5123

Summary: CVE-2026-5123 affects osrg GoBGP up to version 4.3.0. It concerns the function DecodeFromBytes in pkg/packet/bgp/bgp.go, where manipulating the data[1] argument can trigger an off-by-one condition. The issue potentially allows a remote attacker, with a highly complex attack surface, to i...

6.3CVSS5.4AI score0.001EPSS
Exploits0References6Affected Software1
EUVD
EUVDadded 2026/03/27 12:31 a.m.1 views

EUVD-2026-16476

A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...

9CVSS7.8AI score0.00106EPSS
Exploits1References6
NVD
NVDadded 2026/03/27 12:16 a.m.1 views

CVE-2026-4905

A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...

9CVSS0.00106EPSS
Exploits1References5
Cvelist
Cvelistadded 2026/03/26 11:11 p.m.22 views

CVE-2026-4905 Tenda AC5 POST Request WifiWpsOOB formWifiWpsOOB stack-based overflow

A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...

9CVSS0.00106EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2026/03/26 2:58 p.m.0 views

CVE-2026-4007

A vulnerability was detected in Tenda W3 1.0.0.32204. This vulnerability affects unknown code of the file /goform/wifiSSIDget of the component POST Parameter Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. It is possible to initiate the attack...

9CVSS8AI score0.00106EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2026/03/19 9:35 p.m.14 views

capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

9.8CVSS7.4AI score0.00038EPSS
Exploits0References6
EUVD
EUVDadded 2026/03/16 3:30 p.m.2 views

EUVD-2026-12284

A weakness has been identified in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. Affected by this issue is the functio...

9CVSS6.4AI score0.00069EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2026/03/12 6:32 a.m.1 views

CVE-2026-4007 Tenda W3 POST Parameter wifiSSIDget stack-based overflow

A vulnerability was detected in Tenda W3 1.0.0.32204. This vulnerability affects unknown code of the file /goform/wifiSSIDget of the component POST Parameter Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. It is possible to initiate the attack...

9CVSS6.4AI score0.00106EPSS
Exploits1References5
CVE
CVEadded 2026/03/09 5:2 a.m.5 views

CVE-2026-3803

CVE-2026-3803 affects Tenda i3 (firmware 1.0.0.6(2204)). The vulnerability is in the formWifiMacFilterGet function at /goform/WifiMacFilterGet, where manipulating the argument index triggers a stack-based buffer overflow. This vulnerability can be exploited remotely; public exploit details exist ...

9CVSS8AI score0.00106EPSS
Exploits1References5Affected Software1
EUVD
EUVDadded 2026/02/27 3:30 a.m.2 views

EUVD-2026-8970

A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the function formWrlsafeset of the file /goform/AdvSetWrlsafeset of the component httpd. Such manipulation of the argument mitssidindex leads to buffer overflow. The attack can be executed remotely. The exploi...

9CVSS8.8AI score0.00106EPSS
Exploits1References6
OSV
OSVadded 2026/02/27 2:16 a.m.1 views

CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS6.2AI score
Exploits0References8
NVD
NVDadded 2026/02/27 2:16 a.m.3 views

CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS0.00015EPSS
Exploits1References8
Debian CVE
Debian CVEadded 2026/02/27 2:2 a.m.4 views

CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS5.7AI score0.00015EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2026/02/27 12:0 a.m.2 views

PT-2026-22285

A vulnerability was detected in libvips 8.19.0. This affects the function vips bandrank build of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now...

5.3CVSS5.9AI score0.00015EPSS
Exploits1References9
NVD
NVDadded 2025/12/29 8:15 p.m.2 views

CVE-2025-15203

A vulnerability was found in SohuTV CacheCloud up to 3.2.0. This impacts the function index of the file src/main/java/com/sohu/cache/web/controller/ResourceController.java. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has bee...

4.8CVSS0.00022EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2025/12/23 4:4 a.m.1 views

SUSE CVE-2025-14957

A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBuilder::makeLocalSet/IRBuilder::makeLocalTee of the file src/wasm/wasm-ir-builder.cpp of the component IRBuilder. Such manipulation of the argument Index leads to null pointer...

5.5CVSS4.1AI score0.00018EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2025/12/19 5:15 p.m.3 views

CVE-2025-14957

A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBuilder::makeLocalSet/IRBuilder::makeLocalTee of the file src/wasm/wasm-ir-builder.cpp of the component IRBuilder. Such manipulation of the argument Index leads to null pointer...

5.5CVSS5.6AI score0.00018EPSS
Exploits1References9
CVE
CVEadded 2025/12/19 5:2 p.m.5 views

CVE-2025-14957

CVE-2025-14957 affects WebAssembly Binaryen (IRBuilder) up to 125, specifically IRBuilder::makeLocalGet/ makeLocalSet/ makeLocalTee in wasm-ir-builder.cpp. The vulnerability arises from manipulating the Local Index argument, triggering a NULL pointer dereference when processing a malformed binary...

5.5CVSS4.5AI score0.00018EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder