Lucene search
K

211 matches found

NVD
NVD
added 2025/07/04 1:15 p.m.10 views

CVE-2025-48172

CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chmlib.c chmdecompressblock integer overflow. There is a resultant heap-based buffer overflow in chmfetchbytes...

5.6CVSS0.00154EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/04 12:0 a.m.2 views

CVE-2025-48172

CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chmlib.c chmdecompressblock integer overflow. There is a resultant heap-based buffer overflow in chmfetchbytes...

5.6CVSS7.8AI score0.00154EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/07/03 12:0 a.m.6 views

AlmaLinux 9 : gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server (ALSA-2025:7178)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:7178 advisory. gstreamer: EXIF Metadata Parsing Integer Overflow CVE-2024-4453 gstreamer: AV1 Video Parsing Stack-based Buffer Overflow CVE-2024-0444 Tenable has extract...

8.8CVSS7.6AI score0.01565EPSS
Exploits0References4
OSV
OSV
added 2025/06/30 7:14 a.m.6 views

SUSE-SU-2025:02167-1 Security update for glib2

This update for glib2 fixes the following issues: - CVE-2025-6052: Fixed integer overflow in gstringmaybeexpand leads to potential buffer overflow in GString bsc1244596. - CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function gstringinsertunichar bsc1242844...

7.5CVSS7.7AI score0.00426EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/06/30 12:0 a.m.6 views

EulerOS 2.0 SP13 : xorg-x11-server (EulerOS-SA-2025-1712)

According to the versions of the xorg-x11-server package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/06/27 2:31 a.m.3 views

CVE-2025-6750 HDF5 H5Omtime.c H5O__mtime_new_encode heap-based overflow

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5Omtimenewencode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...

4.8CVSS7.2AI score0.00203EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/06/23 12:0 a.m.4 views

SQLite 3.44.0 < 3.49.1 Multiple Vulnerabilities

The version of SQLite installed on the remote host is 3.44.0 through 3.49.0 before 3.49.1. It is, therefore, affected by multiple vulnerabilities: - In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer...

9.8CVSS7.5AI score0.00609EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/06/19 12:0 a.m.5 views

PT-2025-26227

Name of the Vulnerable Software and Affected Versions HDF5 versions up to 1.14.6 Description A critical issue has been found, affecting the H5FS sect find node function of the file H5FSsection.c, leading to a heap-based buffer overflow. The attack can be launched on the local host. Recommendation...

5.3CVSS5.4AI score0.00204EPSS
Exploits1References19
NVD
NVD
added 2025/06/16 10:16 p.m.10 views

CVE-2025-6141

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of the file tinfo/parseentry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to...

4.8CVSS0.00162EPSS
Exploits0References10
NVD
NVD
added 2025/06/02 12:15 p.m.14 views

CVE-2025-48990

NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in rtcopymemory, which unconditionally wrote a null terminator at dstlen. When len equals the size of the destination buffer 256 bytes, that extra '\0' write overruns the buffer by one byte. To avo...

8.6CVSS0.00158EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/02 11:21 a.m.10 views

CVE-2025-48990 NeKernel has Heap Overflow in `rt_copy_memory`

NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in rtcopymemory, which unconditionally wrote a null terminator at dstlen. When len equals the size of the destination buffer 256 bytes, that extra '\0' write overruns the buffer by one byte. To avo...

8.6CVSS7.2AI score0.00158EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/30 12:50 a.m.21 views

CVE-2020-36846 IO::Compress::Brotli versions prior to 0.007 for Perl have an integer overflow in the bundled Brotli C library

A buffer overflow, as described in CVE-2020-8927, exists in the embedded Brotli library. Versions of IO::Compress::Brotli prior to 0.007 included a version of the brotli library prior to version 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a scrip...

0.03217EPSS
Exploits0References5
CVE
CVE
added 2025/05/29 9:7 a.m.214 views

CVE-2025-27151

CVE-2025-27151 affects Redis releases from 7.0.0 up to before 8.0.2. Root cause: a stack-based buffer overflow in redis-check-aof caused by copying a user-supplied filepath into a fixed-size stack buffer using memcpy with strlen(filepath). Potential for code execution as described in the sources....

9.8CVSS7.7AI score0.00797EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 9:45 a.m.8 views

CVE-2024-25003

KiTTY versions 0.76.1.13 and before is vulnerable to a stack-based buffer overflow via the hostname, occurs due to insufficient bounds checking and input sanitization. This allows an attacker to overwrite adjacent memory, which leads to arbitrary code execution...

7.8CVSS7.7AI score0.01815EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:42 a.m.11 views

CVE-2023-30371

In Tenda AC15 V15.03.05.19, the function "subED14" contains a stack-based buffer overflow vulnerability...

9.8CVSS7.4AI score0.00755EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:28 a.m.9 views

CVE-2022-48333

Widevine Trusted Application TA 5.0.0 through 5.1.1 has a drmverifykeys prefixlen+featurenamelen integer overflow and resultant buffer overflow...

9.8CVSS7.4AI score0.00928EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:53 p.m.10 views

CVE-2018-13030

An issue was discovered in jpeg-compressor 0.1. The buildhuffman function in stbimage.c allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact...

7.8CVSS8.2AI score0.01573EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:33 a.m.6 views

CVE-2019-14541

GnuCOBOL 2.2 has a stack-based buffer overflow in cbencodeprogramid in cobc/typeck.c via crafted COBOL source code...

7.8CVSS7.3AI score0.0104EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:29 a.m.8 views

CVE-2019-19795

samurai 0.7 has a heap-based buffer overflow in canonpath in util.c via a crafted build file...

7.8CVSS7.4AI score0.00778EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:27 a.m.4 views

CVE-2019-20162

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is heap-based buffer overflow in the function gfisomboxparseex in isomedia/boxfuncs.c...

5.5CVSS7.3AI score0.00896EPSS
Exploits1References1
Rows per page
Query Builder