UBUNTU-CVE-2025-1864

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before 5.9.9...

CVE-2025-1866

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in warmcat libwebsockets allows Pointer Manipulation, potentially leading to out-of-bounds memory access. This issue affects libwebsockets before 4.3.4 and is present in code built specifically for the Win32...

CVE-2025-1866

CVE-2025-1866 affects warmcat libwebsockets in Win32 builds, with memory safety risk from improper Restriction of Operations within the Bounds of a Memory Buffer leading to pointer manipulation and potential out-of-bounds access in versions prior to 4.3.4. The issue is triggered by specific CMake...

CVE-2025-1864

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before 5.9.9...

The vulnerability of PDF-XChange Editor’s document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing attackers to execute arbitrary code.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created JB2 file...

The vulnerability of UEFI microprogramming systems of Intel processors allows a hacker to gain unauthorized access to protected information.

The vulnerability of Intel UEFI microprogramming systems lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3635)

A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function tsttimer of the file drivers/atm/idt77252.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. VDB-211934 ...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3545)

A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function areacacheget of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfpcppcore.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3565)

A vulnerability, which was classified as critical, has been found in Linux Kernel. Affected by this issue is the function deltimer of the file drivers/isdn/mISDN/l1oipcore.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3625)

A vulnerability was found in Linux Kernel. It has been classified as critical. This affects the function devlinkparamset/devlinkparamget of the file net/core/devlink.c of the component IPsec. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3649)

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfsnewinode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the attack remotely. It is recommended to apply a patch t...

The vulnerability of the set_ws_action() function in the microprogramming software of the D-Link DAP-1320 wireless signal booster allows a intruder to trigger a service failure.

The vulnerability of the setwsaction function in the microprogramming software of the D-Link DAP-1320 wireless signal amplifier is related to the output of operations that go beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

Siemens SIMATIC Devices Linux Kernel Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2022-3564)

A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2capreassemblesdu of the file net/bluetooth/l2capcore.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The...

Advisory ROSA-SA-2025-2721

Software: zlib 1.2.11 OS: ROSA Virtualization 3.0 packageevrstring: zlib-1.2.11 CVE-ID: CVE-2022-37434 BDU-ID: 2022-05325 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the inflate.c component of the zlib library is related to an operation exceeding buffer boundaries in memory. Exploitation of...

The vulnerability of the `binfmt_flat` component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the binfmtflat component in the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

Siemens SCALANCE W700 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2024-33016)

memory corruption when an invalid firehose patch command is invoked. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid502913; scriptversion"1.3";...

The vulnerability of the Simple Network Management Protocol (SNMP) implementation in Cisco IOS and Cisco IOS XE operating systems allows a attacker to induce a service failure.

The vulnerability of the Simple Network Management Protocol SNMP implementation in Cisco IOS and Cisco IOS XE operating systems is related to the escape of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to trigger a service failure remotely...

The vulnerability of D-Link DSL-3782 router’s microprogramming software lies in the fact that the operation output goes beyond the buffer in memory, allowing a hacker to cause a service failure.

The vulnerability of D-Link DSL-3782 router microprogramming software lies in the fact that the operation data is written outside the buffer in memory when processing parameters such as destination, netmask, and gateway. Exploiting this vulnerability allows a remote attacker to cause a service...

PT-2025-28701 · Irfanview · Irfanview +1

Name of the Vulnerable Software and Affected Versions: IrfanView versions affected versions not specified Description: A memory buffer overflow issue exists in the CADImage plugin for IrfanView, a graphics, video, and audio file viewer and player. Exploitation of this issue could allow an attacke...

PT-2025-28699 · Irfanview · Irfanview +1

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: The IrfanView CADImage plugin contains a memory buffer overflow issue during DXF file parsing. Successful exploitation of this issue could allow an attacker to execute arbitrary code usin...