Lucene search
+L

28 matches found

osv
osv
added 2026/04/29 5:43 p.m.5 views

CVE-2026-26204 Wazuh: Heap-based NULL WRITE Buffer Underflow in GetAlertData

Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer allocated by strdup. D...

4.4CVSS6.2AI score0.00169EPSS
Exploits1References4
nvd
nvd
added 2025/10/06 8:15 a.m.8 views

CVE-2025-59728

When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.When we call xmlNodeGetContent below 0, it returns a buffer precisely allocated to match the string length, using strdup internally. If this buffer is...

8.7CVSS0.00172EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2025/10/06 8:8 a.m.6 views

CVE-2025-59728

When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.When we call xmlNodeGetContent below 0, it returns a buffer precisely allocated to match the string length, using strdup internally. If this buffer is...

8.7CVSS7.2AI score0.00172EPSS
Exploits0
ptsecurity
ptsecurity
added 2025/07/22 12:0 a.m.7 views

PT-2025-40874

Name of the Vulnerable Software and Affected Versions Software versions prior to 8.0 Description An issue exists in the handling of MPEG-DASH manifests where an out-of-bounds NUL-byte write occurs one byte past the end of the buffer. This happens during the calculation of the content path. The...

8.7CVSS6.6AI score0.00172EPSS
Exploits0References56
redhatcve
redhatcve
added 2025/02/05 2:24 a.m.6 views

CVE-2024-24957

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00489EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/05 2:22 a.m.7 views

CVE-2024-24955

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00489EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/05 2:19 a.m.6 views

CVE-2024-24956

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00542EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/02/05 2:17 a.m.7 views

CVE-2024-24958

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00542EPSS
Exploits1References1
nvd
nvd
added 2024/05/28 4:15 p.m.21 views

CVE-2024-24959

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS8.4AI score0.00542EPSS
Exploits1References2
osv
osv
added 2024/05/28 4:15 p.m.5 views

CVE-2024-24956

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS5.9AI score
Exploits0References2
nvd
nvd
added 2024/05/28 4:15 p.m.40 views

CVE-2024-24957

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS8.4AI score0.00489EPSS
Exploits1References2
nvd
nvd
added 2024/05/28 4:15 p.m.22 views

CVE-2024-24958

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS8.4AI score0.00542EPSS
Exploits1References2
osv
osv
added 2024/05/28 4:15 p.m.6 views

CVE-2024-24959

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS5.9AI score0.00542EPSS
Exploits1References2
osv
osv
added 2024/05/28 4:15 p.m.6 views

CVE-2024-24957

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS6AI score0.00489EPSS
Exploits1References2
osv
osv
added 2024/05/28 4:15 p.m.7 views

CVE-2024-24954

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS6AI score0.00542EPSS
Exploits1References2
nvd
nvd
added 2024/05/28 4:15 p.m.26 views

CVE-2024-24954

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS8.4AI score0.00542EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2024/05/28 3:30 p.m.23 views

CVE-2024-24955

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00489EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2024/05/28 3:30 p.m.23 views

CVE-2024-24957

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00489EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2024/05/28 3:30 p.m.16 views

CVE-2024-24956

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS7.3AI score0.00542EPSS
Exploits1References2
cvelist
cvelist
added 2024/05/28 3:30 p.m.30 views

CVE-2024-24957

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS8.4AI score0.00489EPSS
Exploits1References2
Rows per page
Query Builder