Lucene search
K

15996 matches found

Positive Technologies
Positive Technologies
added 2026/02/16 12:0 a.m.5 views

PT-2026-8329

Name of the Vulnerable Software and Affected Versions Mattermost versions 11.1.x through 11.1.2 Mattermost versions 10.11.x through 10.11.9 Mattermost versions 11.2.x through 11.2.1 Mattermost Plugin Zoom versions through 1.11.0 Description The software does not properly validate user identity an...

9.9CVSS5.2AI score0.27661EPSS
Exploits45References117
SUSE CVE
SUSE CVE
added 2026/02/14 12:23 a.m.6 views

SUSE CVE-2026-26157

A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attacker to craft malicious archives that when extracted, and under specific conditions, may write to files outside the intended directory. This can lead to arbitrary file overwrite, potentiall...

7CVSS6.2AI score0.00682EPSS
Exploits2References9
RedhatCVE
RedhatCVE
added 2026/02/13 1:22 p.m.4 views

CVE-2025-29951

A buffer overflow in the AMD Secure Processor ASP bootloader could allow an attacker to overwrite memory, potentially resulting in privilege escalation and arbitrary code execution...

7.3CVSS6.2AI score0.00137EPSS
Exploits0References1
Veracode
Veracode
added 2026/02/13 9:9 a.m.5 views

Authorization Bypass

fuxa-server is vulnerable to an Authorization Bypass. The vulnerability is due to improper enforcement of role-based access controls on WebSocket endpoints, where the server fails to validate authentication and authorization for device tag modification requests, allowing unauthenticated remote...

9.3CVSS5.8AI score0.00479EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/02/13 12:0 a.m.4 views

UBUNTU-CVE-2026-0964

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working directory. This could be misused to create malicious executable or configuration files and make the user execute them under specific consequences. This is the same issue...

6.3CVSS5.8AI score0.00408EPSS
Exploits0References5
NVD
NVD
added 2026/02/12 11:16 p.m.5 views

CVE-2019-25336

SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password tool that allows attackers to execute arbitrary code by crafting a malicious payload. Attackers can generate a specially crafted Base64 encoded payload to trigger a Structured Exception Handler SEH...

8.4CVSS0.00211EPSS
Exploits1References4
NVD
NVD
added 2026/02/12 11:16 p.m.6 views

CVE-2019-25332

FTP Commander Pro 8.03 contains a local stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting the EIP register through a custom command input. Attackers can craft a malicious payload of 4108 bytes to overwrite memory and execute shellcode, demonstrating remot...

8.4CVSS0.0025EPSS
Exploits0References4
NVD
NVD
added 2026/02/12 11:16 p.m.7 views

CVE-2019-25331

AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to...

8.4CVSS0.00146EPSS
Exploits0References3
OSV
OSV
added 2026/02/12 11:16 p.m.4 views

CVE-2019-25321

FTP Navigator 8.03 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler SEH registers. Attackers can craft a malicious payload that triggers a buffer overflow when pasted into the Custom Command textbox, enabling remot...

9.8CVSS6.8AI score0.00669EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/12 10:48 p.m.3 views

CVE-2019-25336

SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password tool that allows attackers to execute arbitrary code by crafting a malicious payload. Attackers can generate a specially crafted Base64 encoded payload to trigger a Structured Exception Handler SEH...

8.4CVSS6.4AI score0.00211EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/12 10:48 p.m.2 views

CVE-2019-25332 FTP Commander Pro 8.03 - Local Stack Overflow

FTP Commander Pro 8.03 contains a local stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting the EIP register through a custom command input. Attackers can craft a malicious payload of 4108 bytes to overwrite memory and execute shellcode, demonstrating remot...

8.4CVSS6.8AI score0.0025EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/12 10:48 p.m.28 views

CVE-2019-25332 FTP Commander Pro 8.03 - Local Stack Overflow

FTP Commander Pro 8.03 contains a local stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting the EIP register through a custom command input. Attackers can craft a malicious payload of 4108 bytes to overwrite memory and execute shellcode, demonstrating remot...

8.4CVSS0.0025EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/12 10:48 p.m.5 views

CVE-2019-25331

AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to...

8.4CVSS6.2AI score0.00146EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/12 10:48 p.m.5 views

CVE-2019-25331 AVS Audio Converter 9.1 - 'Exit folder' Buffer Overflow

AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to...

8.4CVSS6.2AI score0.00146EPSS
Exploits0References3
CVE
CVE
added 2026/02/12 10:48 p.m.16 views

CVE-2019-25331

CVE-2019-25331 affects AVS Audio Converter 9.1, featuring a local buffer overflow in the Exit folder input. A crafted text file with 264 bytes of padding followed by register overwrite values can compromise the application and potentially execute arbitrary code. The CVSS metrics indicate high imp...

8.4CVSS6.2AI score0.00146EPSS
Exploits0References3
CVE
CVE
added 2026/02/12 10:48 p.m.10 views

CVE-2019-25329

CVE-2019-25329 affects FTP Navigator 8.03 and is a denial-of-service vulnerability caused by overwriting the Structured Exception Handler (SEH) with malicious input. An attacker can trigger a crash by supplying a payload consisting of 4108 'A' characters followed by 4 'B' characters and 40 'C' ch...

7.5CVSS5.6AI score0.00429EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/12 10:48 p.m.4 views

CVE-2019-25329 FTP Navigator 8.03 - 'Custom Command' Denial of Service (SEH)

FTP Navigator 8.03 contains a denial of service vulnerability that allows attackers to crash the application by overwriting Structured Exception Handler SEH with malicious input. Attackers can generate a payload of 4108 'A' characters followed by 4 'B' characters and 40 'C' characters to trigger ...

7.5CVSS5.6AI score0.00429EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/12 8:26 a.m.6 views

CVE-2020-37182

A flaw was found in redir. A remote attacker can exploit a stack overflow vulnerability in the doproxyconnect function by sending oversized input. This vulnerability, caused by improper length checking in the sprintf function, allows attackers to overwrite memory, leading to a segmentation fault...

8.7CVSS5.6AI score0.00477EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.6 views

PT-2026-7928

FTP Navigator 8.03 contains a denial of service vulnerability that allows attackers to crash the application by overwriting Structured Exception Handler SEH with malicious input. Attackers can generate a payload of 4108 'A' characters followed by 4 'B' characters and 40 'C' characters to trigger ...

7.5CVSS5.6AI score0.00429EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.8 views

PT-2026-7930

AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers to overwrite CPU registers by manipulating the 'Exit folder' input field. Attackers can craft a specially designed text file with 264 bytes of padding followed by register overwrite values to...

8.4CVSS6.2AI score0.00146EPSS
Exploits0References4
Rows per page
Query Builder