CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

Vulnrichment•added 2025/10/19 10:2 p.m.•5 views

CVE-2025-11947 bftpd Configuration File options.c expand_groups heap-based overflow

A weakness has been identified in bftpd up to 6.2. Impacted is the function expandgroups of the file options.c of the component Configuration File Handler. Executing a manipulation can lead to heap-based buffer overflow. It is possible to launch the attack on the local host. Attacks of this natur...

4.5CVSS4.8AI score0.00019EPSS

Exploits0References4

CNNVD•added 2025/10/19 12:0 a.m.•2 views

bftpd 安全漏洞

Bftpd is an FTP File Transfer Protocol server. A security vulnerability exists in bftpd 6.2 and earlier versions, which originates from a heap buffer overflow in the function expandgroups in the file options.c of the component Configuration File Handler, which could lead to a localhost attack...

4.5CVSS5.2AI score0.00019EPSS

Exploits0References5

CNNVD•added 2025/09/23 12:0 a.m.•3 views

fio 代码问题漏洞

fio is a flexible I/O testing software by the individual developer Jens Axboe. A code issue vulnerability exists in fio 3.41 and earlier versions, which stems from a null pointer dereference in the strbufferpatterncb function in the options.c file, which could lead to a local attack...

4.8CVSS4.1AI score0.00031EPSS

Exploits0References6

CVE•added 2025/09/22 11:32 p.m.•14 views

CVE-2025-10823

Summary of CVE-2025-10823 (fio) : A vulnerability in axboe fio up to 3.41 affects the function str_buffer_pattern_cb in the file options.c. Manipulation of this code can cause a null pointer dereference . The attack is described as requiring a local position, and multiple sources note that the ex...

4.8CVSS6AI score0.00031EPSS

Exploits0References5

Positive Technologies•added 2025/09/22 12:0 a.m.•2 views

PT-2025-39091

Name of the Vulnerable Software and Affected Versions axboe fio versions up to 3.41 Description A flaw exists in axboe fio up to version 3.41 related to the str buffer pattern cb function within the file options.c. Manipulation of this function can lead to a null pointer dereference. Exploitation...

4.8CVSS6AI score0.00031EPSS

Exploits0References13

Tenable Nessus•added 2022/05/27 12:0 a.m.•40 views

Debian DLA-3028-1 : atftp - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3028 advisory. - options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client. CVE-2021-46671 Note that Nessus...

5.3CVSS6.7AI score0.0012EPSS

Exploits1References5

Veracode•added 2022/04/21 2:12 p.m.•18 views

Denial Of Service (DoS)

bwm-ng is vulnerable to denail of service. The vulnerability exists due to an arbitrary null write in getcmdlnoptions function in src/options.c...

7.5CVSS3AI score0.00469EPSS

Exploits1References3Affected Software1