Lucene search
+L

5 matches found

NVD
NVD
added 2025/07/30 7:15 p.m.6 views

CVE-2025-50464

A buffer overflow vulnerability exists in the upload.cgi module of the iptime NAS firmware v1.5.04. The vulnerability arises due to the unsafe use of the strcpy function to copy attacker-controlled data from the CONTENTTYPE HTTP header into a fixed-size stack buffer v8, allocated 8 bytes without...

6.5CVSS0.00492EPSS
Exploits1References2
CVE
CVE
added 2025/07/30 12:0 a.m.23 views

CVE-2025-50464

The CVE-2025-50464 affects iptime NAS firmware v1.5.04. The issue is a pre-authentication buffer overflow in the upload.cgi module caused by unsafe use of strcpy to copy attacker-controlled data from the CONTENT_TYPE HTTP header into a fixed-size stack buffer (8 bytes). This can be exploited befo...

6.5CVSS7.2AI score0.00492EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/30 12:0 a.m.3 views

CVE-2025-50464

A buffer overflow vulnerability exists in the upload.cgi module of the iptime NAS firmware v1.5.04. The vulnerability arises due to the unsafe use of the strcpy function to copy attacker-controlled data from the CONTENTTYPE HTTP header into a fixed-size stack buffer v8, allocated 8 bytes without...

7.1AI score0.00492EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/07/30 12:0 a.m.7 views

PT-2025-31431 · Iptime · Iptime Nas Firmware

Name of the Vulnerable Software and Affected Versions: iptime NAS firmware version 1.5.04 Description: A buffer overflow exists in the upload.cgi module due to the unsafe use of the strcpy function. This function copies data from the CONTENT TYPE HTTP header into a fixed-size stack buffer 8 bytes...

6.5CVSS7AI score0.00492EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/07/30 12:0 a.m.13 views

CVE-2025-50464

A buffer overflow vulnerability exists in the upload.cgi module of the iptime NAS firmware v1.5.04. The vulnerability arises due to the unsafe use of the strcpy function to copy attacker-controlled data from the CONTENTTYPE HTTP header into a fixed-size stack buffer v8, allocated 8 bytes without...

0.00492EPSS
Exploits1References2
Rows per page
Query Builder