305 matches found
Tenda AC7 Buffer Overflow Vulnerability (CNVD-2025-07593)
Tenda AC7 is a wireless router from Tenda, a Chinese company. The Tenda AC7 suffers from a buffer overflow vulnerability that originates from the timeZone parameter of the formfastsettingwifiset function failing to properly validate the length of the input data, which can be exploited by an...
Tenda AX12 Buffer Overflow Vulnerability (CNVD-2025-07608)
Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China. The Tenda AX12 suffers from a buffer overflow vulnerability that originates from the sub43fdcc function in /goform/SetNetControlList that fails to correctly validate the length of the input data, which can be exploited by ...
AC8 Buffer Overflow Vulnerability (CNVD-2025-07594) in Shenzhen Jixiang Tengda Technology Co.
Shenzhen Jixiang Tengda Technology Co., Ltd AC8 is a wireless router. Shenzhen Jixiang Tengda Technology Co., Ltd AC8 has a buffer overflow vulnerability, the vulnerability stems from the sub47D878 function's src parameter fails to correctly validate the length of the input data size, an attacker...
The vulnerability of the Golang programming language, related to improper validation of input data, allows attackers to circumvent established security restrictions.
The vulnerability of the Golang programming language is related to improper validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent established security measures...
The vulnerability of the gitRepo function in the Kubernetes cluster management software allows a attacker to influence the confidentiality and integrity of the protected information.
The vulnerability of the gitRepo function in the Kubernetes cluster management software is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected information...
The vulnerability of Microsoft Surface sensor display microprogramming software, related to insufficient validation of input data, allows a hacker to bypass security functions.
The vulnerability of Microsoft Surface sensor display software is related to insufficient testing of input data. Exploiting this vulnerability could allow a remote attacker to bypass security measures...
Tenda tx3 Buffer Overflow Vulnerability
The Tenda tx3 is a wireless router from the Chinese company Tenda. The Tenda tx3 suffers from a buffer overflow vulnerability that originates from the parameter list of goform/setpptpuserlist failing to properly validate the length size of the input data, which can be exploited by an attacker to...
Tenda TX3 setNetControllist function buffer overflow vulnerability
Tenda TX3 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda TX3 16.03.13.11multi, which originates when the parameter list of goform /setNetControllist fails to correctly validate the length of the input data, and can be exploited by an attacker t...
The vulnerability of the System Management Mode (SMM) mode of AMD microprogramming software allows a hacker to execute arbitrary code.
The vulnerability of the System Management Mode SMM mode of AMD microprogramming processor software is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the MongoDB database management system, related to improper validation of consistency in input data, allows a attacker to cause service failures.
The vulnerability of the MongoDB database management system is related to improper validation of consistency in input data during index processing with the PrepareUnique parameter. Exploiting this vulnerability allows an attacker to cause service failures remotely...
The vulnerability of UEFI microprogramming systems in Intel processors allows attackers to enhance their privileges.
The vulnerability of UEFI microprogramming systems of Intel processors is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of UEFI microprogramming systems of Intel processors allows a hacker to gain unauthorized access to protected information.
The vulnerability of Intel UEFI microprogramming systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
The vulnerability of the iio component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the iio component in the Linux operating system’s kernel is related to improper validation of input data in the afe4403readraw function. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the Linux operating system’s kernel components, which allows a hacker to cause a service failure
The vulnerability of the Linux operating system’s kernel components is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the Linux operating system’s kernel Wi-Fi component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel Wi-Fi component is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
Adobe Illustrators stack buffer overflow vulnerability (CNVD-2025-06309)
Adobe Illustrator is a professional vector graphic design software developed by Adobe, widely used in graphic design, illustration creation, web design and other fields. A stack buffer overflow vulnerability exists in Adobe Illustrators in versions 29.1, 28.7.3 and earlier. The vulnerability is...
The vulnerability of the Kerberos protocol for Windows operating systems allows a perpetrator to induce a service failure.
The vulnerability of the Kerberos protocol for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...
The vulnerability of the fs/ntfs3 components in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the bpf component in the Linux operating system’s kernel is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the gtp_newlink() function in the drivers/net/gtp.c module of Linux kernel allows a hacker to cause a service failure.
The vulnerability of the gtpnewlink function in the drivers/net/gtp.c file of the Linux kernel is related to an improper representation of the list of network devices, resulting from insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failur...
CVE-2022-2502
A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...