CVE-2026-25667

ASP.NET Core Kestrel in Microsoft .NET 8.0 before 8.0.22 and .NET 9.0 before 9.0.11 allows a remote attacker to cause excessive CPU consumption by sending a crafted QUIC packet, because of an incorrect exit condition for HTTP/3 Encoder/Decoder stream processing...

CVE-2021-22766

A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 Versions 3.0.0 and newer and PowerLogic EGX300 All Versions that could cause denial of service via a specially crafted HTTP packet...

CVE-2025-55091

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxippacketreceive function when received an Ethernet with type set as IP but no IP data...

CVE-2025-55091

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxippacketreceive function when received an Ethernet with type set as IP but no IP data...

EUVD-2025-34735

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in nxippacketreceive function when received an Ethernet with type set as IP but no IP data...

EUVD-2025-31674

Malicious code in bioql PyPI...

CVE-2019-1010300

mz-automation libiec61850 1.3.2 1.3.1 1.3.0 is affected by: Buffer Overflow. The impact is: Software crash. The component is: serverexamplecomplexarray. The attack vector is: Send a specific MMS protocol packet...

CVE-2023-39226

In Delta Electronics InfraSuite Device Master v.1.0.7, a vulnerability exists that allows an unauthenticated attacker to execute arbitrary code through a single UDP packet...

PT-2023-7416 · Delta Electronics · Infrasuite Device Master

Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master version 1.0.7 Description: The issue is related to the use of dangerous methods or functions in the software, allowing a remote attacker to execute arbitrary code by sending a specially crafted UDP...

SUSE CVE-2008-0352

The Linux kernel 2.6.20 through 2.6.21.1 allows remote attackers to cause a denial of service panic via a certain IPv6 packet, possibly involving the Jumbo Payload hop-by-hop option jumbogram...

SUSE CVE-2018-7226

An issue was discovered in vcSetXCutTextProc in VNConsole.c in LinuxVNC and VNCommand from the LibVNC/vncterm distribution through 0.9.10. Missing sanitization of the client-specified message length may cause integer overflow or possibly have unspecified other impact via a specially crafted VNC...

Zyxel NAS326 格式化字符串错误漏洞

The Zyxel NAS326 is a cloud storage NAS from China's Heqin Technology Zyxel. A security vulnerability exists in Zyxel NAS326 firmware prior to V5.21 AAZF.12 C0, which stems from a vulnerability that allows an attacker to achieve unauthorized remote code execution via a crafted UDP packet exploiti...

Softing Secure Integration Server 代码问题漏洞

Softing Secure Integration Server is a secure integration server from Softing Germany. It provides a powerful OPC UA data integration layer and supports interface abstraction, aggregation, data preprocessing and security supervision. A code issue vulnerability exists in Softing Secure Integration...

CVE-2021-22765

A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 Versions 3.0.0 and newer and PowerLogic EGX300 All Versions that could cause denial of service or remote code execution via a specially crafted HTTP packet...

Juniper Networks Junos OS Configuration Error Vulnerability

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A misconfiguration vulnerability exists in Junos OS that can be exploited by an attacker to trigger a denial of service vi...

Unauthorized Access Vulnerability in Kodak Video Surveillance Devices

hereinafter referred to as KODAK is a provider of video and security products and solutions, dedicated to video conferencing, video surveillance and a wealth of video application solutions to help all kinds of government and enterprise customers to solve the visual communication and management...

Denial of Service Vulnerability in Schneider Electric TM218LDAE24DRHN

Schneider Electric TM218LDAE24DRHN is a programmable controller product from Schneider Electric France. A denial of service vulnerability exists in the Schneider Electric TM218LDAE24DRHN, which can be exploited by an attacker to send a specific protocol packet and cause a denial of service attack...

CVE-2019-1010300

mz-automation libiec61850 1.3.2 1.3.1 1.3.0 is affected by: Buffer Overflow. The impact is: Software crash. The component is: serverexamplecomplexarray. The attack vector is: Send a specific MMS protocol packet...

CVE-2019-1010300

mz-automation libiec61850 1.3.2 1.3.1 1.3.0 is affected by: Buffer Overflow. The impact is: Software crash. The component is: serverexamplecomplexarray. The attack vector is: Send a specific MMS protocol packet...

Buffer overflow

mz-automation libiec61850 1.3.2 1.3.1 1.3.0 is affected by: Buffer Overflow. The impact is: Software crash. The component is: serverexamplecomplexarray. The attack vector is: Send a specific MMS protocol packet...