Lucene search
K

305 matches found

CNVD
CNVD
added 2025/03/27 12:0 a.m.7 views

Tenda AC7 Buffer Overflow Vulnerability (CNVD-2025-07593)

Tenda AC7 is a wireless router from Tenda, a Chinese company. The Tenda AC7 suffers from a buffer overflow vulnerability that originates from the timeZone parameter of the formfastsettingwifiset function failing to properly validate the length of the input data, which can be exploited by an...

9.8CVSS8.1AI score0.0051EPSS
Exploits1References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.3 views

Tenda AX12 Buffer Overflow Vulnerability (CNVD-2025-07608)

Tenda AX12 is a dual-band Gigabit Wifi 6 wireless router from Tenda China. The Tenda AX12 suffers from a buffer overflow vulnerability that originates from the sub43fdcc function in /goform/SetNetControlList that fails to correctly validate the length of the input data, which can be exploited by ...

6.5CVSS8.2AI score0.00757EPSS
Exploits1References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.5 views

AC8 Buffer Overflow Vulnerability (CNVD-2025-07594) in Shenzhen Jixiang Tengda Technology Co.

Shenzhen Jixiang Tengda Technology Co., Ltd AC8 is a wireless router. Shenzhen Jixiang Tengda Technology Co., Ltd AC8 has a buffer overflow vulnerability, the vulnerability stems from the sub47D878 function's src parameter fails to correctly validate the length of the input data size, an attacker...

6.5CVSS7.1AI score0.00328EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.10 views

The vulnerability of the Golang programming language, related to improper validation of input data, allows attackers to circumvent established security restrictions.

The vulnerability of the Golang programming language is related to improper validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent established security measures...

6.4CVSS6.4AI score0.00458EPSS
Exploits0References6Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/17 12:0 a.m.8 views

The vulnerability of the gitRepo function in the Kubernetes cluster management software allows a attacker to influence the confidentiality and integrity of the protected information.

The vulnerability of the gitRepo function in the Kubernetes cluster management software is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected information...

8.5CVSS6AI score0.00516EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/03/14 12:0 a.m.4 views

The vulnerability of Microsoft Surface sensor display microprogramming software, related to insufficient validation of input data, allows a hacker to bypass security functions.

The vulnerability of Microsoft Surface sensor display software is related to insufficient testing of input data. Exploiting this vulnerability could allow a remote attacker to bypass security measures...

7.1CVSS7.7AI score0.00823EPSS
Exploits0References2
CNVD
CNVD
added 2025/03/13 12:0 a.m.7 views

Tenda tx3 Buffer Overflow Vulnerability

The Tenda tx3 is a wireless router from the Chinese company Tenda. The Tenda tx3 suffers from a buffer overflow vulnerability that originates from the parameter list of goform/setpptpuserlist failing to properly validate the length size of the input data, which can be exploited by an attacker to...

7.5CVSS7.2AI score0.00664EPSS
Exploits1References1
CNVD
CNVD
added 2025/03/13 12:0 a.m.9 views

Tenda TX3 setNetControllist function buffer overflow vulnerability

Tenda TX3 is a wireless router from Tenda, a Chinese company. A buffer overflow vulnerability exists in Tenda TX3 16.03.13.11multi, which originates when the parameter list of goform /setNetControllist fails to correctly validate the length of the input data, and can be exploited by an attacker t...

7.5CVSS8AI score0.01098EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.5 views

The vulnerability of the System Management Mode (SMM) mode of AMD microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the System Management Mode SMM mode of AMD microprogramming processor software is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.5CVSS5.8AI score0.00176EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/03 12:0 a.m.5 views

The vulnerability of the MongoDB database management system, related to improper validation of consistency in input data, allows a attacker to cause service failures.

The vulnerability of the MongoDB database management system is related to improper validation of consistency in input data during index processing with the PrepareUnique parameter. Exploiting this vulnerability allows an attacker to cause service failures remotely...

6.8CVSS6.8AI score0.0057EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/02/28 12:0 a.m.3 views

The vulnerability of UEFI microprogramming systems in Intel processors allows attackers to enhance their privileges.

The vulnerability of UEFI microprogramming systems of Intel processors is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

8.2CVSS7.4AI score0.00259EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/02/27 12:0 a.m.5 views

The vulnerability of UEFI microprogramming systems of Intel processors allows a hacker to gain unauthorized access to protected information.

The vulnerability of Intel UEFI microprogramming systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.3CVSS5.9AI score0.00237EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.10 views

The vulnerability of the iio component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the iio component in the Linux operating system’s kernel is related to improper validation of input data in the afe4403readraw function. Exploiting this vulnerability can allow an attacker to cause service failures...

7.1CVSS6.5AI score0.00244EPSS
Exploits0References23Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/02/18 12:0 a.m.7 views

The vulnerability of the Linux operating system’s kernel components, which allows a hacker to cause a service failure

The vulnerability of the Linux operating system’s kernel components is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

6.2CVSS6.4AI score0.00243EPSS
Exploits0References18Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/02/18 12:0 a.m.22 views

The vulnerability of the Linux operating system’s kernel Wi-Fi component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s kernel Wi-Fi component is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

8.8CVSS5.9AI score0.00793EPSS
Exploits0References22Affected Software4
CNVD
CNVD
added 2025/02/14 12:0 a.m.7 views

Adobe Illustrators stack buffer overflow vulnerability (CNVD-2025-06309)

Adobe Illustrator is a professional vector graphic design software developed by Adobe, widely used in graphic design, illustration creation, web design and other fields. A stack buffer overflow vulnerability exists in Adobe Illustrators in versions 29.1, 28.7.3 and earlier. The vulnerability is...

7.8CVSS7.8AI score0.00362EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/13 12:0 a.m.10 views

The vulnerability of the Kerberos protocol for Windows operating systems allows a perpetrator to induce a service failure.

The vulnerability of the Kerberos protocol for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

5.9CVSS7.7AI score0.01888EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.6 views

The vulnerability of the fs/ntfs3 components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the bpf component in the Linux operating system’s kernel is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References32Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.6 views

The vulnerability of the gtp_newlink() function in the drivers/net/gtp.c module of Linux kernel allows a hacker to cause a service failure.

The vulnerability of the gtpnewlink function in the drivers/net/gtp.c file of the Linux kernel is related to an improper representation of the list of network devices, resulting from insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failur...

5.5CVSS6.7AI score0.0021EPSS
Exploits0References24Affected Software5
RedhatCVE
RedhatCVE
added 2025/02/05 9:34 p.m.16 views

CVE-2022-2502

A vulnerability exists in the HCI IEC 60870-5-104 function included in certain versions of the RTU500 series product. The vulnerability can only be exploited, if the HCI 60870-5-104 is configured with support for IEC 62351-5 and the CMU contains the license feature ‘Advanced security’ which must ...

7.5CVSS7.1AI score0.0054EPSS
Exploits0References1
Rows per page
Query Builder