CVE-2025-68118

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.20.0, a vulnerability exists in FreeRDP’s certificate handling code on Windows platforms. The function freerdpcertificatedatahash uses the Microsoft-specific snprintf function to format certificate cache filenames...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50074)

parport: The recent fix for array out-of-bounds accesses replaced sprintf calls blindly with snprintf. However, since snprintf returns the would-be-printed size, not the actually output size, the length calculation can still go over the given limit. This plugin only works with Tenable.ot. Please...

CVE-2025-39901

In the Linux kernel, the following vulnerability has been resolved: i40e: remove read access to debugfs files The 'command' and 'netdevops' debugfs files are a legacy debugging interface supported by the i40e driver since its early days by commit 02e9c290814c "i40e: debugfs interface". Both of...

SUSE CVE-2025-39901

In the Linux kernel, the following vulnerability has been resolved: i40e: remove read access to debugfs files The 'command' and 'netdevops' debugfs files are a legacy debugging interface supported by the i40e driver since its early days by commit 02e9c290814c "i40e: debugfs interface". Both of...

AZL-72355 CVE-2025-39901 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: i40e: remove read access to debugfs files The 'command' and 'netdevops' debugfs files are a legacy debugging interface supported by the i40e driver since its early days by commit 02e9c290814c "i40e: debugfs interface". Both of...

PT-2025-40075

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The i40e driver in the Linux kernel contains a flaw related to debugfs files 'command' and 'netdev ops'. These files expose a debugging interface with questionable logic and potential fo...

PT-2024-13950 · Exiftags +1 · Exiftags +1

Name of the Vulnerable Software and Affected Versions: exiftags version 1.01 Description: The issue is a heap-based buffer overflow caused by the snprintf function writing to an unexpected address in the nikon prop1 function within nikon.c. This occurs because snprintf can write a size of 28,...

GSD-2022-1005624 selftests/bpf: fix a test for snprintf() overflow

selftests/bpf: fix a test for snprintf overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

PT-2022-34131 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.137 Description: The issue is related to a potential security vulnerability in the Linux Kernel, specifically concerning an snprintf overflow. The actual impact and attack plausibility have not yet been...

PT-2022-33881 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to an snprintf overflow check in libbpf. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.6...

PT-2022-33882 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a potential security vulnerability in the Linux Kernel, specifically concerning an snprintf overflow in selftests/bpf. The actual impact and attack plausibility have...

GSD-2022-1005282 selftests/bpf: fix a test for snprintf() overflow

selftests/bpf: fix a test for snprintf overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

PT-2022-33540 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue concerns a potential security vulnerability related to an snprintf overflow in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations...

PT-2022-33541 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to an snprintf overflow check in libbpf. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.19.2,...

Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities

Exploit for linux platform in category web applications Title: Synology DSM multiple vulnerabilities Version affected: = 4.3-3776 Vendor: Synology Discovered by: Andrea Fabrizi Email: email protected Web: http://www.andreafabrizi.it Twitter: @andreaf83 Status: unpatched Synology DiskStation Manag...