USN-7575-1: MuJS vulnerabilities

It was discovered that MuJS did not correctly handle try/finally statements, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2021-45005 Han Zheng discovered that MuJS did not correctly handle recursion,...

CVE-2025-48796

A flaw was found in GIMP. The GIMP aniloadimage function is vulnerable to a stack-based overflow. If a user opens.ANI files, GIMP may be used to store more information than the capacity allows. This flaw allows a malicious ANI file to trigger arbitrary code execution...

The vulnerability of the xmlSnprintfElements() function in the libxml2 library allows a hacker to execute arbitrary code.

The vulnerability of the xmlSnprintfElements function in the libxml2 library is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

CVE-2025-3203 Tenda W18E setModules formSetAccountList stack-based overflow

A vulnerability classified as problematic was found in Tenda W18E 16.01.0.11. Affected by this vulnerability is the function formSetAccountList of the file /goform/setModules. The manipulation of the argument Password leads to stack-based buffer overflow. The attack can be launched remotely. The...

CVE-2025-29121

A vulnerability was found in Tenda AC6 V15.03.05.16. The vulnerability affects the functionality of the /goform/fastsettingwifiset file formfastsettingwifiset. Using the timeZone parameter causes a stack-based buffer overflow...

Huawei EulerOS: Security Advisory for iptraf-ng (EulerOS-SA-2025-1266)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-25663

A vulnerability was found in Tenda AC8V4 V16.03.34.06. Affected is the function SUB0046AC38 of the file /goform/WifiExtraSet. The manipulation of the argument wpapskcrypto leads to stack-based buffer overflow...

CVE-2024-50694

In SunGrow WiNet-SV200.001.00.P027 and earlier versions, when copying the timestamp read from an MQTT message, the underlying code does not check the bounds of the buffer that is used to store the message. This may lead to a stack-based buffer overflow...

CVE-2024-50694

SunGrow WiNet-SV200 affected up to 0.001.00.P027; the issue is a stack-based buffer overflow caused by missing bounds checks when copying the timestamp read from MQTT messages. This affects the buffer used to store the message, enabling potential remote code execution. Connected sources confirm t...

Wavlink AC3000 usbip.cgi set_info() buffer overflow vulnerability

Talos Vulnerability Report TALOS-2024-2045 Wavlink AC3000 usbip.cgi setinfo buffer overflow vulnerability January 14, 2025 CVE Number CVE-2024-36272 SUMMARY A buffer overflow vulnerability exists in the usbip.cgi setinfo functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP...

PT-2025-34646 · Libbiosig +1 · Libbiosig +1

Name of the Vulnerable Software and Affected Versions: libbiosig versions 3.9.0 libbiosig Master Branch 35a819fa Description: A stack-based buffer overflow vulnerability exists in the MFER parsing functionality. A specially crafted MFER file can lead to arbitrary code execution. The vulnerability...

CVE-2024-44563

Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function setIptvInfo...

CVE-2024-33182

Tenda AC18 V15.03.3.10EN was discovered to contain a stack-based buffer overflow vulnerability via the deviceId parameter at ip/goform/addWifiMacFilter...

CVE-2023-52761

In the Linux kernel, the following vulnerability has been resolved: riscv: VMAPSTACK overflow detection thread-safe commit 31da94c25aea "riscv: add VMAPSTACK overflow detection" added support for CONFIGVMAPSTACK. If overflow is detected, CPU switches to shadowstack temporarily before switching...

UBUNTU-CVE-2023-52761

In the Linux kernel, the following vulnerability has been resolved: riscv: VMAPSTACK overflow detection thread-safe commit 31da94c25aea "riscv: add VMAPSTACK overflow detection" added support for CONFIGVMAPSTACK. If overflow is detected, CPU switches to shadowstack temporarily before switching...

CVE-2023-52761 riscv: VMAP_STACK overflow detection thread-safe

In the Linux kernel, the following vulnerability has been resolved: riscv: VMAPSTACK overflow detection thread-safe commit 31da94c25aea "riscv: add VMAPSTACK overflow detection" added support for CONFIGVMAPSTACK. If overflow is detected, CPU switches to shadowstack temporarily before switching...

The vulnerability of the Radio Scheduling component in the microprogramming software of Tp-Link AC1350 allows a intruder to execute arbitrary code.

The vulnerability of the Radio Scheduling component in the microprogramming software of Tp-Link AC1350 wireless access points is related to buffer overflows in the stack when processing the “action” parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using...

CVE-2024-30620

CVE-2024-30620 affects Tenda AX1803 v1.0.0.1. The vulnerability is a stack overflow triggered by the serviceName parameter in the function fromAdvSetMacMtuWan. NVD CVSSv3.1 base score 9.8 (CRITICAL): AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. Impact: high on confidentiality, integrity, and availability...

CVE-2024-22667

Vim before 9.0.2142 has a stack-based buffer overflow because didsetlangmap in map.c calls sprintf to write to the error buffer that is passed down to the option callback functions...

CVE-2023-52389

UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer overflow because Poco::UTF32Encoding::convert and Poco::UTF32::queryConvert may return a negative integer if a UTF-32 byte sequence evaluates to a value of 0x80000000 or higher. This is fixed in...