PT-2026-34618

Name of the Vulnerable Software and Affected Versions @xmldom/xmldom versions prior to 0.8.13 @xmldom/xmldom versions prior to 0.9.10 xmldom versions 0.6.0 and earlier Description The software allows attacker-controlled processing instruction PI data to be serialized into XML without validating o...

ROS-20260408-73-0032

A vulnerability in the btrfscopyroot function of the btrfs component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an attacker to cause a denial of service...

ROS-20260203-73-0021

A vulnerability in the btrfs component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an intruder to affect the integrity of protected information...

CVE-2020-12498

mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerable to out-of-bounds read remote code execution. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...

EUVD-2020-4800

Malware in sbrugna...

EUVD-2011-0604

Malware in sbrugna...

EUVD-2021-9846

Malicious code in bioql PyPI...

EUVD-2024-43124

Malicious code in bioql PyPI...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 : UDisks vulnerability (USN-7723-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by a vulnerability as referenced in the USN-7723-1 advisory. Michael Imfeld discovered that UDisks did not check the validity of input data correctly when...

Linux Distros Unpatched Vulnerability : CVE-2025-38254

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add sanity checks for drmedidraw When EDID is retrieved via drmedidraw, it...

ROS-20250807-05

The vulnerability of the RESTEasy software tool is related to incorrect input data validation, leading to the return of an invalid header that is integrated into the server response. Exploitation of the vulnerability could Allow an attacker acting remotely to execute arbitrary code A vulnerabilit...

HDF5 src/H5Centry.c file buffer overflow vulnerability

HDF5 is a library of HDF open source . HDF5 version 1.14.6 there is a buffer overflow vulnerability , the vulnerability stems from the file src/H5Centry.c function H5Cflushsingleentry fails to correctly validate the length of the input data size , a remote attacker can use this vulnerability on t...

Tenda AC5 Stack Buffer Overflow Vulnerability

Tenda AC5 is a wireless router from Tenda, a Chinese company. The Tenda AC5 suffers from a stack buffer overflow vulnerability that originates from the failure of the parameters schedStartTime and schedEndTime in the file /goform/openSchedWifi to properly validate the length of the input data,...

TOTOLINK EX1200T /boafrm/formNtp File Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T suffers from a buffer overflow vulnerability, which originates from the failure of the parameter submit-url in the file /boafrm/formNtp to correctly validate the length and size of the inpu...

ROS-20250619-17

Vulnerability of CompressorStreamFactory, TarArchiveInputStream and TarFile classes of Apache Commons archiver Compress is related to uncontrolled resource consumption as a result of insufficient input data validation when processing TAR archive headers. Exploitation of the vulnerability could...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14376)

FreeFloat FTP Server is an FTP service from FreeFloat. A buffer overflow vulnerability exists in FreeFloat FTP Server, which stems from the XCWD Command Handler component failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...

Tenda CH22 Buffer Overflow Vulnerability

Tenda CH22 is a network device from Tenda, China. The Tenda CH22 suffers from a buffer overflow vulnerability that originates from the parameter page in the file /goform/Natlimit that fails to properly validate the length of the input data, which can be exploited by an attacker to execute arbitra...

Tenda AC8 /goform/WifiExtraSet File Buffer Overflow Vulnerability

Tenda AC8 is a wireless router from Tenda, a Chinese company. Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter wpapskcrypto in the file /goform/WifiExtraSet that fails to correctly validate the length and size of the input data, which can be exploited by...

Planet FW-WGS-804HPT web_acl_mgmt_Rules_Edit_postcontains function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall-mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the byruleEditName parameter in the webaclmgmtRulesEditpostcontains function to correctly validate the length and size...

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...