FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14503)

FreeFloat FTP Server is an FTP service from Freefloat. A buffer overflow vulnerability exists in FreeFloat FTP Server that stems from the component MLS Command Handler failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...

TOTOLINK A3002R formMapDelDevice interface bandstr parameter buffer overflow vulnerability

TOTOLINK A3002R is a wireless router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in the TOTOLINK A3002R, which stems from the bandstr parameter in the formMapDelDevice interface failing to correctly validate the length size of the input data, no detailed...

GNU PSPP Buffer Overflow Vulnerability

GNU PSPP is an application for data sampling, statistics and analysis from the American GNU community. GNU PSPP suffers from a buffer overflow vulnerability that stems from inflateread failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a...

Tenda AC10 formSetPPTPUserList Buffer Overflow Vulnerability

Tenda AC10 is a dual-band Gigabit wireless router from Tenda China. The Tenda AC10 suffers from a buffer overflow vulnerability that originates from the formSetPPTPUserList handler failing to properly validate the length of input data, which can be exploited by an attacker to execute arbitrary co...

TOTOLINK NR1800X setWiFiEasyGuestCfg Function Buffer Overflow Vulnerability

TOTOLINK NR1800X is an outstanding 5G NR indoor Wi-Fi and SIP CPE from China's Gion Electronics TOTOLINK. The TOTOLINK NR1800X suffers from a buffer overflow vulnerability that stems from the ssid5g parameter in the setWiFiEasyGuestCfg function failing to properly validate the length size of the...

CVE-2024-12533

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore Technology 4 allows Input Data Manipulation.This issue affects SecureCore Technology 4: from 4.0.1.0 before 4.0.1.1018, from 4.1.0.1 before 4.1.0.573, from 4.2.0.1 before 4.2.0.338, from 4.2.1.1 before...

PCMan FTP Server LIST Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the LIST command handler failing to correctly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

The vulnerability of the RepairKit component in iPadOS, iOS, and visionOS allows attackers to compromise the confidentiality of protected information.

The vulnerability of the RepairKit component in iPadOS, iOS, and visionOS is related to insufficient validation of input data. Exploiting this vulnerability could allow attackers to compromise the confidentiality of protected information...

The vulnerability of the Windows Common Log File System (CLFS) driver in Windows operating systems allows a hacker to elevate their privileges to the SYSTEM level.

The vulnerability of the Windows Common Log File System CLFS driver in Windows operating systems is related to deficiencies in the mechanism for checking input data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the SYSTEM level...

The vulnerability of the MacOS operating system, related to insufficient validation of input data, allows a hacker to gain access to and modify system files.

The vulnerability of the MacOS operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain access to and modify system files...

CVE-2024-12533

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore Technology 4 allows Input Data Manipulation.This issue affects SecureCore Technology 4: from 4.0.1.0 before 4.0.1.1018, from 4.1.0.1 before 4.1.0.573, from 4.2.0.1 before 4.2.0.338, from 4.2.1.1 before...

CVE-2024-12533

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore Technology 4 allows Input Data Manipulation.This issue affects SecureCore Technology 4: from 4.0.1.0 before 4.0.1.1018, from 4.1.0.1 before 4.1.0.573, from 4.2.0.1 before 4.2.0.338, from 4.2.1.1 before...

CVE-2024-12533

Vulnerability summary (CVE-2024-12533) : Phoenix SecureCore Technology 4 is affected by an Improper Check for Unusual or Exceptional Conditions that allows Input Data Manipulation. The issue affects multiple version ranges across SecureCore 4: 4.0.1.0–4.0.1.1017, 4.1.0.1–4.1.0.572, 4.2.0.1–4.2.0....

CVE-2024-12533

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore Technology 4 allows Input Data Manipulation.This issue affects SecureCore Technology 4: from 4.0.1.0 before 4.0.1.1018, from 4.1.0.1 before 4.1.0.573, from 4.2.0.1 before 4.2.0.338, from 4.2.1.1 before...

Phoenix SecureCore 安全漏洞

Phoenix SecureCore is a computer based input/output system from Phoenix Contact Phoenix, Germany. A security vulnerability exists in Phoenix SecureCore that stems from an improperly checked exception condition that could lead to input data manipulation...

PT-2025-20906 · Phoenix · Phoenix Securecore Technology 4

Name of the Vulnerable Software and Affected Versions: Phoenix SecureCore Technology 4 versions 4.0.1.0 through 4.0.1.1017 Phoenix SecureCore Technology 4 versions 4.1.0.1 through 4.1.0.572 Phoenix SecureCore Technology 4 versions 4.2.0.1 through 4.2.0.337 Phoenix SecureCore Technology 4 versions...

CVE-2025-47229

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service varsetleavequiet assertion failure and application exit via crafted input data, such as data that triggers a call from src/data/dictionary.c code into src/data/variable.c code...

CVE-2025-47229

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service varsetleavequiet assertion failure and application exit via crafted input data, such as data that triggers a call from src/data/dictionary.c code into src/data/variable.c code...

CVE-2025-47229

CVE-2025-47229 affects GNU PSPP (libpspp-core.a) up to version 2.0.1. The root cause is a denial-of-service condition triggered by crafted input data that causes a var_set_leave_quiet assertion failure and application exit, via a call path from src/data/dictionary.c into src/data/variable.c. Mult...

CVE-2025-47229

libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service varsetleavequiet assertion failure and application exit via crafted input data, such as data that triggers a call from src/data/dictionary.c code into src/data/variable.c code...