CVE-2021-45605

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6400 before 1.0.1.68, R7000 before 1.0.11.116, R6900P before 1.3.3.140, R7000P before 1.3.3.140, R7900 before 1.0.4.38, RAX75 before 1.0.3.102, RAX80 before 1.0.3.102, and XR300 before...

CVE-2021-45606

The CVE-2021-45606 entry concerns NETGEAR routers affected by a stack-based buffer overflow that is exploitable by an authenticated user over the network. Affected devices/firmware ranges include R6400 < 1.0.1.70, R7000 < 1.0.11.126, R7900 < 1.0.4.46, R7900P < 1.4.2.84, R7960P < 1....

CVE-2021-45606

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6400 before 1.0.1.70, R7000 before 1.0.11.126, R7900 before 1.0.4.46, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000 before 1.0.4.74, R8000P before 1.4.2.84, RAX200 before 1.0.4.12...

CVE-2021-45607

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R6400v2 before 1.0.4.118, R6700v3 before 1.0.4.118, R6900P before 1.3.3.140, R7000 before 1.0.11.126, R7000P before 1.3.3.140, RAX200 before 1.0.5.126, RAX75 before 1.0.5.126, and RAX80...

CVE-2021-45636

The CVE-2021-45636 entry affects NETGEAR D7000 wireless modems with firmware before 1.0.1.82, due to a stack-based buffer overflow triggered by an unauthenticated attacker. Impact, per provided sources, includes high potential impact to confidentiality, integrity, and availability. The remediatio...

CVE-2021-45638

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D6220 before 1.0.0.68, D6400 before 1.0.0.102, D7000v2 before 1.0.0.74, D8500 before 1.0.3.60, DC112A before 1.0.0.56, R6300v2 before 1.0.4.50, R6400 before 1.0.1.68, R7000 before...

CVE-2021-45638

CVE-2021-45638 affects NETGEAR routers (e.g., D6220 < 1.0.0.68, D6400 < 1.0.0.102, D7000v2 < 1.0.0.74, D8500 < 1.0.3.60, DC112A < 1.0.0.56, R6300v2 < 1.0.4.50, R6400 < 1.0.1.68, R7000 < 1.0.11.116, R7100LG < 1.0.0.70, RBS40V < 2.6.2.8, RBW30 < 2.6.2.2, RS400 < ...

CVE-2021-21905

Stack-based buffer overflow vulnerability exists in how the CMA readfile function of Garrett Metal Detectors iC Module CMA Version 5.0 is used at various locations. The Garrett iC Module exposes an authenticated CLI over TCP port 6877. This interface is used by a secondary GUI client, called “CMA...

Stack overflow

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...

Stack overflow

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to trigger this...

CVE-2021-21903

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to strcpy. An attacker can send a malicious packet to trigger this...

CVE-2021-21903

CVE-2021-21903 is a stack-based buffer overflow in Garrett Metal Detectors’ iC Module CMA Version 5.0. The vulnerability occurs in the CMA check_udp_crc path where a UDP-CRC field is copied with strcpy into an 8-byte buffer (input_crc_str) without bounds checking, enabling remote attackers to ove...

CVE-2021-21901

A stack-based buffer overflow vulnerability exists in the CMA checkudpcrc function of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted packet can lead to a stack-based buffer overflow during a call to memcpy. An attacker can send a malicious packet to trigger this...

CVE-2021-21887

A stack-based buffer overflow vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4 in QEMU. A specially crafted HTTP request can lead to remote code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

Security Bulletin: i2 Analysts' Notebook memory corruption vulnerability

Summary i2 Analysts' Notebook is potentially vulnerable to a memory corruption vulnerability Vulnerability Details CVEID: CVE-2021-39050 DESCRIPTION: IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local...

Security Bulletin: i2 Analysts' Notebook memory corruption vulnerability

Summary i2 Analysts' Notebook is vulnerable to potential memory corruption vulnerabilities Vulnerability Details CVEID: CVE-2021-39049 DESCRIPTION: IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacke...

CVE-2021-38413

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to a stack-based buffer overflow, which may allow an attacker to achieve code execution...

Stack overflow

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to a stack-based buffer overflow, which may allow an attacker to achieve code execution...

CVE-2021-38413 Fuji Electric Tellus Lite V-Simulator stack based buffer overflow

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to a stack-based buffer overflow, which may allow an attacker to achieve code execution...

USN-5194-1: Olm vulnerability

Denis Kasak discovered that Olm was not verifying the length of input being processed by the olmpkdecrypt module, which introduced a stack-based buffer overflow vulnerability to the library. An attacker could use this to cause a denial of service application crash or possibly execute arbitrary co...