211 matches found
EUVD-2022-0111
Malicious code in bioql PyPI...
EUVD-2025-23456
Malicious code in bioql PyPI...
EUVD-2024-32474
Malicious code in bioql PyPI...
PT-2025-31760
Name of the Vulnerable Software and Affected Versions iperf versions prior to 3.19.1 Description The iperf software contains a heap-based buffer overflow issue in the iperf auth.c file. This is due to an off-by-one error. Recommendations Update to iperf version 3.19.1 or later...
CVE-2025-48071 OpenEXR's Forged Unpacked Size can Lead to Heap-Based Buffer Overflow in Deep Scanline Parsing
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.2 through 3.3.0, there is a heap-based buffer overflow during a write operation when decompressing ZIPS-packed deep scan-line EXR files...
SUSE-SU-2025:02566-1 Security update for libarchive
This update for libarchive fixes the following issues: - CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 - CVE-2025-5915: Fixed heap buffer over read in copyfromlzsswindow at archivereadsupportformatrar.c bsc1244273 -...
CVE-2025-51087
Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/saveParentControlInfo. The manipulation of the argument time leads to stack-based buffer overflow...
CVE-2025-51082
Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/fastsettingwifiset. The manipulation of the argument timeZone leads to stack-based buffer overflow...
CVE-2025-51089
Tenda AC8V4 V16.03.34.06 was discovered to contain heap overflow at /goform/GetParentControlInfo.The manipulation of the argument mac leads to heap-based buffer overflow...
CVE-2025-51087
Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/saveParentControlInfo. The manipulation of the argument time leads to stack-based buffer overflow...
CVE-2025-51088
Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/WifiGuestSet. The manipulation of the argument shareSpeed leads to stack-based buffer overflow...
CVE-2025-51085
Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/SetSysTimeCfg. The manipulation of the argument timeZone and timeType leads to stack-based buffer overflow...
PT-2025-30671 · Tenda · Tenda Ac8V4
Name of the Vulnerable Software and Affected Versions: Tenda AC8V4 version V16.03.34.06 Description: The Tenda AC8V4 device contains a stack overflow issue at the /goform/saveParentControlInfo API endpoint. Manipulation of the time parameter leads to a stack-based buffer overflow. Recommendations...
CVE-2025-51085
Affected software: Tenda AC8V4 (firmware V16.03.34.06). Vulnerability: stack-based buffer overflow in the /goform/SetSysTimeCfg API caused by improper handling of timeZone/timeType parameters. Impact: potential crash of the application (availability impact cited as LOW); exploitation details are ...
CVE-2025-51082
Tenda AC8V4 V16.03.34.06 was discovered to contain stack overflow at /goform/fastsettingwifiset. The manipulation of the argument timeZone leads to stack-based buffer overflow...
RHEL 9 : glib2 (RHSA-2025:11373)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:11373 advisory. GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in...
AlmaLinux 9 : glib2 (ALSA-2025:11140)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:11140 advisory. glib: buffer overflow in setconnectmsg CVE-2024-52533 glib: Buffer Underflow on GLib through glib/gstring.c via function gstringinsertunichar CVE-2025-43...
RHEL 10 : glib2 (RHSA-2025:10855)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:10855 advisory. GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in...
RHEL 9 : jq (RHSA-2025:10615)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:10615 advisory. jq is a lightweight and flexible command-line JSON processor. jq is like sed for JSON data. You can use it to slice, filter, map, or...
SUSE-SU-2025:02233-1 Security update for glib2
This update for glib2 fixes the following issues: - CVE-2025-4373: integer overflow in the gstringinsertunichar function can lead to buffer underwrite and memory corruption bsc1242844...