Lucene search
K

305 matches found

CNVD
CNVD
added 2025/06/10 12:0 a.m.3 views

Tenda AC8 /goform/WifiExtraSet File Buffer Overflow Vulnerability

Tenda AC8 is a wireless router from Tenda, a Chinese company. Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter wpapskcrypto in the file /goform/WifiExtraSet that fails to correctly validate the length and size of the input data, which can be exploited by...

9CVSS8.5AI score0.00998EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.7 views

The vulnerability of the “Sotbit: Multiregionality” plugin, which stems from insufficient validation of input data, allows attackers to execute arbitrary code.

The vulnerability of the “Sotbit: Multiregionality” plugin is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS5.9AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/03 12:0 a.m.5 views

The vulnerability of the gfs2 component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the gfs2 component in Linux operating systems is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.5CVSS6.4AI score0.00193EPSS
Exploits0References12Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/05/29 12:0 a.m.4 views

The vulnerability of VideoGrace video conference software, related to insufficient validation of input data, allows a intruder to trigger a service failure.

The vulnerability of VideoGrace video conferencing software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures by sending specially crafted requests...

7.8CVSS5.5AI score
Exploits0Affected Software1
CNVD
CNVD
added 2025/05/28 12:0 a.m.4 views

Planet FW-WGS-804HPT web_acl_mgmt_Rules_Edit_postcontains function buffer overflow vulnerability

Planet FW-WGS-804HPT is a wall-mounted managed switch from China PLANET. The Planet FW-WGS-804HPT suffers from a buffer overflow vulnerability that originates from the failure of the byruleEditName parameter in the webaclmgmtRulesEditpostcontains function to correctly validate the length and size...

9.8CVSS8.5AI score0.00453EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:31 a.m.10 views

CVE-2024-48870

Sharp and Toshiba Tec MFPs improperly validate input data in URI data registration, resulting in a stored cross-site scripting vulnerability. If crafted input is stored by an administrative user, malicious script may be executed on the web browsers of other victim users...

6.2CVSS6.1AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:34 p.m.8 views

CVE-2021-43390

An Out-of-Bounds Write vulnerability exists when reading a DGN file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DGN files. Crafted data in a DGN file and lack of proper validation of input data can trigger a write operation past the end ...

7.8CVSS7AI score0.01641EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.10 views

CVE-2020-5986

NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which an input data size is not validated, which may lead to tampering or denial of service. This affects vGPU version 8.x prior to 8.5, version 10.x prior to 10.4 and version 11.0...

5.5CVSS6.7AI score0.00275EPSS
Exploits0References1
CNVD
CNVD
added 2025/05/22 12:0 a.m.2 views

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14503)

FreeFloat FTP Server is an FTP service from Freefloat. A buffer overflow vulnerability exists in FreeFloat FTP Server that stems from the component MLS Command Handler failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...

9.8CVSS7.3AI score0.00588EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.3 views

TOTOLINK NR1800X setWiFiEasyGuestCfg Function Buffer Overflow Vulnerability

TOTOLINK NR1800X is an outstanding 5G NR indoor Wi-Fi and SIP CPE from China's Gion Electronics TOTOLINK. The TOTOLINK NR1800X suffers from a buffer overflow vulnerability that stems from the ssid5g parameter in the setWiFiEasyGuestCfg function failing to properly validate the length size of the...

8.8CVSS8.5AI score0.0056EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.2 views

TOTOLINK A3002R formMapDelDevice interface bandstr parameter buffer overflow vulnerability

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3002R, which stems from the bandstr parameter in the formMapDelDevice interface failing to correctly validate the length size of the input data, no detailed...

5.4CVSS6.6AI score0.03503EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.5 views

GNU PSPP Buffer Overflow Vulnerability

GNU PSPP is an application for data sampling, statistics and analysis from the American GNU community. GNU PSPP suffers from a buffer overflow vulnerability that stems from inflateread failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a...

9.8CVSS7.5AI score0.00258EPSS
Exploits1References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.2 views

Tenda AC10 formSetPPTPUserList Buffer Overflow Vulnerability

Tenda AC10 is a dual-band Gigabit wireless router from Tenda China. The Tenda AC10 suffers from a buffer overflow vulnerability that originates from the formSetPPTPUserList handler failing to properly validate the length of input data, which can be exploited by an attacker to execute arbitrary co...

9.8CVSS8.5AI score0.05111EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.8 views

The vulnerability of the MacOS operating system, related to insufficient validation of input data, allows a hacker to gain access to and modify system files.

The vulnerability of the MacOS operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to and modify system files...

5.5CVSS5.5AI score0.00271EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/14 12:0 a.m.4 views

The vulnerability of the RepairKit component in iPadOS, iOS, and visionOS allows attackers to compromise the confidentiality of protected information.

The vulnerability of the RepairKit component in iPadOS, iOS, and visionOS is related to insufficient validation of input data. Exploiting this vulnerability could allow attackers to compromise the confidentiality of protected information...

3.3CVSS5.5AI score0.00614EPSS
Exploits0References4Affected Software3
CNVD
CNVD
added 2025/04/30 12:0 a.m.4 views

TOTOLINK N150RT /boafrm/formWlwds File Buffer Overflow Vulnerability

The TOTOLINK N150RT is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK N150RT suffers from a buffer overflow vulnerability that originates from the failure of the parameter submit-url in the file /boafrm/formWlwds to correctly validate the length and size of the input data,...

9CVSS8.5AI score0.00852EPSS
Exploits1References1
CNVD
CNVD
added 2025/04/30 12:0 a.m.12 views

Tenda AC15 Buffer Overflow Vulnerability

The Tenda AC15 is a wireless router from the Chinese company Tenda. Tenda AC15 15.03.05.19 and earlier versions suffer from a buffer overflow vulnerability, which originates from the mac parameter of the function fromSetWirelessRepeat in the file /goform/WifiExtraSet failing to correctly validate...

9CVSS8.4AI score0.0086EPSS
Exploits1References1
CNVD
CNVD
added 2025/04/25 12:0 a.m.7 views

Tenda AC10 wanSpeed2 Parameter Buffer Overflow Vulnerability

The Tenda AC10 is a wireless router from the Chinese company Tenda. The Tenda AC10 suffers from a buffer overflow vulnerability that stems from the wanSpeed2 parameter in AdvSetMacMtuWan failing to correctly validate the length and size of the input data, which can be exploited by an attacker to...

7.5CVSS7.1AI score0.00478EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.7 views

The vulnerability of the NFSD component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the NFSD component in the Linux operating system’s kernel is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00274EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/04/10 12:0 a.m.5 views

The vulnerability of the data.c component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the data.c component in the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

3.3CVSS5.9AI score0.0021EPSS
Exploits0References13Affected Software4
Rows per page
Query Builder