Lucene search
K

13 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/12 9:34 p.m.7 views

CVE-2026-8449

This CVE ID has been rejected or withdrawn...

5.7AI score0.00179EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.15 views

PT-2026-40453

Name of the Vulnerable Software and Affected Versions Linux ksmbd affected versions not specified Description A remote memory corruption issue exists in the ACL inheritance path. Remote clients with directory creation permissions can trigger a heap out-of-bounds read and subsequent heap corruptio...

8.8CVSS5.9AI score0.00179EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.10 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-010699)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010699 advisory. An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap- based buffer overflow in setntacldacl, related to use of...

8.8CVSS7.5AI score0.03576EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/27 6:30 a.m.7 views

EUVD-2025-36074

A security flaw has been discovered in Tenda O3 1.0.0.102478. Affected by this issue is the function SetValue/GetValue of the file /goform/setDmzInfo. The manipulation of the argument dmzIP results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS6.8AI score0.00759EPSS
Exploits1References6
OSV
OSV
added 2025/02/26 7:1 a.m.5 views

UBUNTU-CVE-2022-49271

In the Linux kernel, the following vulnerability has been resolved: cifs: prevent bad output lengths in smb2ioctlqueryinfo When calling smb2ioctlqueryinfo with smbqueryinfo::flags=PASSTHRUFSCTL and smbqueryinfo::outputbufferlength=0, the following would return 0x10 buffer = memdupuserarg +...

5.5CVSS6.2AI score0.00252EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.7 views

PT-2025-2445 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A buffer overflow issue exists in the set info functionality of usbip.cgi. This can be triggered by a specially crafted HTTP request, leading to a stack-based buffer overflow. An attacker...

9.1CVSS7.5AI score0.01265EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. A buffer overflow vulnerability exists in the WAVLINK AC3000, which is caused by the usbip.cgi setinfo function failing to properly validate the length of the input data, and can be exploited to execute arbitrary code or cause a denia...

9.1CVSS8AI score0.01265EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:22 a.m.1 views

SUSE CVE-2022-47942

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in setntacldacl, related to use of SMB2QUERYINFOHE after a malformed SMB2SETINFOHE command...

8.8CVSS6.9AI score0.03576EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2022/12/31 8:0 a.m.3 views

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in set_ntacl_dacl related to use of SMB2_QUERY_INFO_HE after a malformed SMB2_SET_INFO_HE command.

...

8.8CVSS7AI score0.03576EPSS
Exploits0
OSV
OSV
added 2022/12/23 4:15 p.m.2 views

DEBIAN-CVE-2022-47942

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in setntacldacl, related to use of SMB2QUERYINFOHE after a malformed SMB2SETINFOHE command...

8.8CVSS7AI score0.03576EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/29 12:0 a.m.4 views

PT-2022-36723 · Git +1 · Wireshark

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read crash. The crash state involves several functions, including expert set info vformat, expert add info...

6.8AI score
Exploits0References2
OSV
OSV
added 2018/09/20 6:29 a.m.2 views

DEBIAN-CVE-2018-17237

A SIGFPE signal is raised in the function H5Dchunksetinforeal of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207...

6.5CVSS6.9AI score0.01487EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/20 12:0 a.m.4 views

HDF5 divide by zero error vulnerability (CNVD-2019-03452)

HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A divide-by-zero error vulnerability exists in the 'H5Dchunksetinforeal' function of the H5Dchunk.c file in HDF5 version 1.10.3,...

6.5CVSS7.1AI score0.01487EPSS
Exploits1References1
Rows per page
Query Builder