Lucene search
K

27 matches found

Snyk
Snyk
added 2026/04/18 12:47 a.m.6 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ptpunpackEOSImageFormat and ptpunpackEOSCustomFuncEx functions due to missing length validation for input buffers. An attacker can cause the application to read out-of-bounds memory by supplying crafted data to...

6.1CVSS5.8AI score0.00218EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.9 views

CVE-2026-25571

A vulnerability has been identified in SICAM SIAPP SDK All versions V2.1.7. The SICAM SIAPP SDK client component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process...

5.9CVSS6AI score0.00098EPSS
Exploits0References1
OSV
OSV
added 2026/03/10 6:18 p.m.4 views

CVE-2026-25572

A vulnerability has been identified in SICAM SIAPP SDK All versions V2.1.7. The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 6:18 p.m.7 views

CVE-2026-25572

A vulnerability has been identified in SICAM SIAPP SDK All versions V2.1.7. The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process...

5.9CVSS0.00119EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.6 views

GPAC 安全漏洞

GPAC is an open source multimedia framework. GPAC suffers from a stack buffer overflow vulnerability that stems from the vorbistointern function failing to correctly validate the length and size of the input data, which can be exploited by an attacker to cause a denial of service...

5.5CVSS5.9AI score0.00141EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-2221

Malware in sbrugna...

8.8CVSS7.2AI score0.03235EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-43970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GoBGP before 3.35.0. pkg/packet/mrt/mrt.go does not properly check the input length, e.g., by ensuring that there are 12 bytes or 36...

5.3CVSS4.7AI score0.00356EPSS
Exploits0References2
CNVD
CNVD
added 2025/07/25 12:0 a.m.3 views

Tenda FH451 formP2pListFilter function buffer overflow vulnerability

Tenda FH451 is a single-band 2.4GHz SOHO wireless router launched by China Tenda, with a maximum transmission rate of 450Mbps, belonging to the series of products of the King of Wall Penetration. Tenda FH451 has a buffer overflow vulnerability, the vulnerability stems from the parameter page in t...

9CVSS8.4AI score0.02792EPSS
Exploits4References1
CNNVD
CNNVD
added 2025/06/05 12:0 a.m.2 views

FreeFloat FTP Server 安全漏洞

FreeFloat FTP Server is an FTP service from FreeFloat. A buffer overflow vulnerability exists in FreeFloat FTP Server that stems from the XMKD Command Handler component failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...

9.8CVSS7.3AI score0.00558EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 p.m.6 views

CVE-2020-3653

Possible buffer over-read in windows wlan driver function due to lack of check of length of variable received from userspace in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850...

9.4CVSS7.4AI score0.00915EPSS
Exploits0
NVD
NVD
added 2025/04/21 1:15 a.m.46 views

CVE-2025-43970

An issue was discovered in GoBGP before 3.35.0. pkg/packet/mrt/mrt.go does not properly check the input length, e.g., by ensuring that there are 12 bytes or 36 bytes depending on the address family...

5.3CVSS0.00356EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/13 12:0 a.m.8 views

D-Link DI-8100 安全漏洞

The D-Link DI-8100 is a broadband router from D-Link designed for small to medium sized network environments. A stack buffer overflow vulnerability exists in the D-Link DI-8100. The vulnerability stems from the authasp function in the /auth.asp file in the jhttpd component not effectively limitin...

8.8CVSS7.3AI score0.08254EPSS
Exploits1References7
OSV
OSV
added 2025/02/17 8:50 p.m.5 views

CLSA-2025-1739825397 freerdp: Fix of 6 CVEs

CVE-2024-32458: fix missing input length checks - CVE-2024-32459: fix missing input length check - CVE-2024-32460: fix out-of-bound read in interleaveddecompress - CVE-2024-32039: fix integer overflow - CVE-2024-32040: fix missing check - CVE-2024-32041: fix integer overflow...

9.8CVSS7.2AI score0.0375EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/08/31 12:0 a.m.3 views

FreeRDP 缓冲区错误漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a buffer overflow vulnerability that stems from the generalLumaToYUV444 function processing on the in variable without checking if it contains data of sufficient length. An...

9.1CVSS7.1AI score0.01247EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2023/05/09 11:51 a.m.3 views

c-ares: buffer overflow in config_sortlist() due to missing string length check

A flaw was found in the c-ares package. The aressetsortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity...

8.6CVSS7.5AI score0.01232EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/03/30 1:6 p.m.4 views

c-ares: buffer overflow in config_sortlist() due to missing string length check

A flaw was found in the c-ares package. The aressetsortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity...

8.6CVSS7.5AI score0.01232EPSS
Exploits1References5
OSV
OSV
added 2023/02/02 9:14 p.m.4 views

CLSA-2023-1675372486 Fix CVE(s): CVE-2022-3437

SECURITY UPDATE: heap-based buffer overflows in Heimdal ARC4 and DES3 - debian/patches/CVE-2022-3437.patch: add extra NULL pointer and buffer boundaries checks, fix undefined behaviour and input data length calculations, remove accidentally duplicated code in arcfour.c - CVE-2022-3437...

6.5CVSS6.8AI score0.0369EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/12/30 12:0 a.m.4 views

Tenda A15 缓冲区错误漏洞

Tenda A15 is a WiFi extender from Tenda, a Chinese company. A stack overflow vulnerability exists in the Tenda A15 security parameter, which originates from a lack of length checking of input data in the security parameter of /goform/WifiBasicSet, and can be exploited by an attacker to execute...

9.8CVSS8.1AI score0.00873EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2022/11/25 12:0 a.m.5 views

The vulnerability of the USB redirection channel (urbdrc) in the FreeRDP remote desktop protocol allows a intruder to gain unauthorized access to protected information or cause a service failure.

The vulnerability of the USB redirection channel urbdrc in the FreeRDP remote desktop protocol is related to the issue where operations are performed outside the buffer during data input length checking. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected...

9.4CVSS6.1AI score0.00687EPSS
Exploits0References13Affected Software6
RedHat Linux
RedHat Linux
added 2022/11/15 10:17 a.m.6 views

frrouting: overflow bugs in unpack_tlv_router_cap

frrouting is vulnerable to a flaw that can cause buffer overflow through due to incorrect checks on the input packet length when processing type-length-value packets. There is high impact to availability due to the fact that the process up-time can be made unreliable...

7.8CVSS6AI score0.01007EPSS
Exploits1References5
Rows per page
Query Builder