175 matches found
EulerOS Virtualization 2.13.1 : openjpeg2 (EulerOS-SA-2026-2381)
According to the versions of the openjpeg2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library...
EulerOS 2.0 SP13 : openjpeg2 (EulerOS-SA-2026-2347)
According to the versions of the openjpeg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library...
[SECURITY] [DLA 4593-1] openjpeg2 security update
Debian LTS Advisory DLA-4593-1 [email protected] https://www.debian.org/lts/security/ Jochen Sprickerhof May 21, 2026 https://wiki.debian.org/LTS Package : openjpeg2 Version : 2.4.0-3+deb11u3 CVE ID : CVE-2026-6192 A vulnerability was identified in uclouvain. This impacts the function...
CVE-2018-25328
VX Search 10.6.18 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying an oversized string in the directory field. Attackers can craft a malicious input file containing 271 bytes of junk data followed by a return address to execute...
Astra Linux – Vulnerability in edk2
EDK2 is vulnerable to a vulnerability in the CreateHob function, which allows a user to trigger an integer overflow that leads to a buffer overflow through a local network. Successful exploitation of this vulnerability may result in compromises of confidentiality, integrity, and/or availability...
PT-2026-35990
SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute...
CVE-2018-25263 Faleemi Desktop Software 1.8.2 Local Buffer Overflow SEH
Faleemi Desktop Software 1.8.2 contains a local buffer overflow vulnerability in the Device alias field that allows local attackers to trigger a structured exception handler SEH overwrite. Attackers can craft a malicious payload and paste it into the Device alias field within the Managing Log...
CVE-2018-25263
Faleemi Desktop Software 1.8.2 contains a local buffer overflow in the Device alias field of the Managing Log interface that allows an attacker with local access to trigger a structured exception handler (SEH) overwrite and execute arbitrary code (PoC shows calculator). The vulnerability is trigg...
CVE-2026-6192
A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library src/lib/openjp2/pi.c. The manipulation leads to integer overflow. The attack must be carried out locally. The exploit is publicly available and might be used. The...
UBUNTU-CVE-2019-25695
R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the...
CVE-2018-25258 RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass
RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...
PT-2026-30469
LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service...
PT-2026-27371
X-NetStat Pro 5.63 contains a local buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting the EIP register through a 264-byte buffer overflow. Attackers can inject shellcode into memory and use an egg hunter technique to locate and execute the payload...
CVE-2026-3137
A security vulnerability has been detected in CodeAstro Food Ordering System 1.0. This affects an unknown function of the file foodordering.exe. Such manipulation leads to stack-based buffer overflow. The attack can only be performed from a local environment. The exploit has been disclosed public...
CVE-2020-37029
FTPDummy 4.80 is affected by a local buffer overflow in the handling of its preference files, allowing an attacker to craft a malicious preference file that contains shellcode to overwrite a structured exception handler and execute system commands. The vulnerability affects FTPDummy version 4.80 ...
CVE-2025-15534
A vulnerability was identified in raysan5 raylib up to 909f040. Affected by this issue is the function LoadFontData of the file src/rtext.c. The manipulation leads to integer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used...
CVE-2025-15013 floooh sokol sokol_gfx.h _sg_validate_pipeline_desc stack-based overflow
A vulnerability was identified in floooh sokol up to 5d11344150973f15e16d3ec4ee7550a73fb995e0. The impacted element is the function sgvalidatepipelinedesc in the library sokolgfx.h. Such manipulation leads to stack-based buffer overflow. The attack must be carried out locally. The exploit is...
CVE-2025-15013
This CVE pertains to floooh sokol (sokol_gfx.h) and a stack-based buffer overflow in the _sg_validate_pipeline_desc function. Affected versions are those prior to the commit 5d11344150973f15e16d3ec4ee7550a73fb995e0, with exploitation requiring local access. An publicly available exploit exists, a...
CVE-2020-36881
Flexsense DiskBoss 7.7.14 contains a local buffer overflow vulnerability in the 'Input Directory' component that allows unauthenticated attackers to execute arbitrary code on the system. Attackers can exploit this by pasting a specially crafted directory path into the 'Add Input Directory' field...
EUVD-2013-4593
Malware in sbrugna...