CVE-2021-37021

CVE-2021-37021 — Huawei HarmonyOS kernel stack-based buffer overflow is documented to potentially cause an out-of-bounds read. The vulnerability is described across multiple sources as affecting Huawei HarmonyOS (kernel module) with a stack-based overflow that can be exploited over network access...

CVE-2021-37020

CVE-2021-37020 describes a stack-based buffer overflow in Huawei HarmonyOS device software (Huawei Smartphone), affecting the Kernel module. The vulnerability can lead to an out-of-bounds read. Documented impact is based on public CVSS data (CVSS‑3.1: Network, Low attack complexity, Privileges Re...

CVE-2021-37014

CVE-2021-37014 is a stack-based buffer overflow in Huawei HarmonyOS Kernel module affecting Huawei devices. Exploitation can render the device unavailable, with CVSS indicating high availability impact. The linked sources describe the vulnerability across HarmonyOS smartphone deployments, but rem...

CVE-2021-37011

CVE-2021-37011 concerns Huawei HarmonyOS, with a stack-based buffer overflow in the Kernel module that can lead to an out-of-bounds read. The available documents describe the affected platform as HarmonyOS and the vulnerability class as a kernel stack overflow, but do not provide precise technica...

CVE-2021-37011

There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read...

Tencent WeChat WXAM Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM decoder. T...

OpenText Brava! Desktop DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

RHEL 6 : dhcp (RHSA-2021:2419)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2419 advisory. The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network configuration...

Open Design Alliance (ODA) ODAViewer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA ODAViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

Open Design Alliance (ODA) ODAViewer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA ODAViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawings Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

Debian DLA-2832-1 : opensc - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2832 advisory. - OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decodebitstring in libopensc/asn1.c. CVE-2019-15945 - OpenSC before 0.20.0-rc1 has ...

Stack-based Buffer Overflow

suricata:sid is vulnerable to stack-based buffer overflow attacks. An attacker is able to send a certain sequence of segments allowing TCP evasion via a crafted TCP/IP stack resulting in buffer overflows...

CVE-2021-42705

PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code...

CVE-2021-42705 WECON PLC Editor

PLC Editor Versions 1.3.8 and prior is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code...

Remote Code Execution (RCE)

htmldoc is vulnerable to remote code execution. The vulnerability exists due to a stack-based buffer overflow in imageloadbmp in HTMLDOC...

CVE-2021-0657

In apusys, there is a possible out of bounds write due to a stack-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05672103; Issue ID: ALPS05672103...

CVE-2021-0657

CVE-2021-0657 affects apusys and is caused by a stack-based buffer overflow leading to an out-of-bounds write. This can enable local escalation to System privileges without user interaction. The vulnerability context is supported by multiple sources (e.g., Red Hat, NVD) and lists a patch referenc...

CVE-2021-33479

A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measurepitch in pgm2asc.c...

CVE-2021-33479

CVE-2021-33479 affects GOCR (gocr) up to version 0.53-20200802, with a stack-based buffer overflow in measure_pitch() within pgm2asc.c. The connected Nessus/Gentoo/GSLAs references corroborate a vulnerable GOCR stack overflow vector; no public fix is detailed in the provided documents. Gentoo GLS...