2214 matches found
CVE-2024-24731 Silicon Labs Gecko OS http_download Stack-based Buffer Overflow
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...
CVE-2024-24731 Silicon Labs Gecko OS http_download Stack-based Buffer Overflow
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Silicon Labs Gecko OS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the httpdownload command. The issue results from t...
CVE-2025-21415
Authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network...
CVE-2025-21415
CVE-2025-21415 affects Azure AI Face Service, where an authentication bypass by spoofing allows an authorized attacker to elevate privileges over a network. Public sources (NVD, MSRC) confirm a high-severity elevation-of-privilege flaw with CVSS v3.1 scores: NVD base 8.8 (C/H/I/A), Microsoft’s ve...
PT-2025-31670 · Alpine +1 · Alpine Ilx-507 +1
Name of the Vulnerable Software and Affected Versions: Alpine iLX-507 affected versions not specified Description: This issue allows network-adjacent attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices without authentication. The flaw resides within the Tidal...
CVE-2024-12649
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier...
CVE-2024-12649
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier...
CVE-2024-12649
Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and earlier...
CVE-2024-12648
Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and...
CVE-2024-12647
Buffer overflow in CPCA font download processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and...
CVE-2024-12647
CVE-2024-12647 affects Canon Office/Small Office/MFP and Laser Printers, with a Buffer Overflow in CPCA font download processing that may allow an attacker on the network to cause the device to become unresponsive or execute arbitrary code. Affected product families include Satera MF656Cdw/MF654C...
CVE-2024-12647
Buffer overflow in CPCA font download processing of Small Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code. : Satera MF656Cdw/Satera MF654Cdw firmware v05.04 and...
CVE-2025-24126
An input validation issue was addressed. This issue is fixed in iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, macOS Sonoma 14.7.5, macOS Ventura 13.7.5, tvOS 18.3, visionOS 2.3. An attacker on the local network may be able to corrupt process memory...
Exploit for Path Traversal in Iptanus Wordpress_File_Upload
CVE-2024-9047: Exploit for WordPress File Upload Plugin De...
CVE-2023-37039
A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allow network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected RRC Establishment Clause field...
CVE-2023-37033
A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected EUTRANCGI field...
CVE-2023-37031
A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP eNB Configuration Transfer packet missing its required Target eNB ID field...
CVE-2023-37034
A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP Initial UE Message packet missing an expected TAI field...
CVE-2023-37027
Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Modification Indication packet missing an expected eNBUES1APID field...
CVE-2023-37026
A Null pointer dereference vulnerability in the Mobile Management Entity MME in Magma = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows network-adjacent attackers to crash the MME via an S1AP E-RAB Release Response packet missing an expected MMEUES1APID field...