CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5905 matches found

NVD•added 2024/05/29 4:15 p.m.•7 views

CVE-2024-35333

A stack-buffer-overflow vulnerability exists in the readcharsetdecl function of html2xhtml 1.3. This vulnerability occurs due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this vulnerability by providing a specially crafted input to the...

8.4CVSS7.5AI score0.00203EPSS

Exploits1References1

Cvelist•added 2024/05/29 3:12 p.m.•13 views

CVE-2024-35333

7.5AI score0.00203EPSS

Exploits1References1

CVE•added 2024/05/29 3:12 p.m.•75 views

CVE-2024-35333

CVE-2024-35333 affects html2xhtml version 1.3, specifically the read_charset_decl function. The root cause is improper bounds checking when copying data into a fixed-size stack buffer, allowing a stack-based overflow. Reported impact includes arbitrary code execution, denial of service, or data c...

8.4CVSS8.2AI score0.00203EPSS

Exploits1References1

Positive Technologies•added 2024/05/29 12:0 a.m.•3 views

PT-2024-26438 · Unknown · Html2Xhtml

Name of the Vulnerable Software and Affected Versions: html2xhtml version 1.3 Description: A stack-buffer-overflow issue exists in the read charset decl function due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this by providing a specially...

8.4CVSS8.3AI score0.00203EPSS

Exploits1References4

CNVD•added 2024/05/28 12:0 a.m.•1 views

Tenda AX1806 formSetIptv Stack Buffer Overflow Vulnerability

The Tenda AX1806 is a home wireless router device. The Tenda AX1806 suffers from a stack buffer overflow vulnerability that originates via the adv.iptv.stbpvid parameter in the function formSetIptv, which can be exploited by an attacker to crash an application or execute arbitrary code in the...

9.8CVSS7.5AI score0.00448EPSS

Exploits1References1

BDU FSTEC•added 2024/05/24 12:0 a.m.•1 views

The vulnerability of the setMacFilterRules function in TOTOLINK CP450 router microprogramming software allows a intruder to execute arbitrary code.

The vulnerability of the setMacFilterRules function in TOTOLINK CP450 router microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

10CVSS6.3AI score0.00449EPSS

Exploits1References3Affected Software1

BDU FSTEC•added 2024/05/24 12:0 a.m.•2 views

The vulnerability of Siemens Solid Edge, a design and modeling tool, relates to buffer overflow in the stack. This allows an attacker to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created PAR file...

7.8CVSS6.3AI score0.00295EPSS

Exploits0References3

Tenable Nessus•added 2024/05/23 12:0 a.m.•15 views

RHEL 8 : LibRaw (RHSA-2024:2994)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2994 advisory. LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: stack buffe...

7.8CVSS6.5AI score0.00024EPSS

Exploits1References6

CNVD•added 2024/05/22 12:0 a.m.•2 views

TOTOLINK CP450 SetPortForwardRules method stack buffer overflow vulnerability

TOTOLINK CP450 is an outdoor wireless client terminal device manufactured by China Gion Electronics Company TOTOLINK, which is mainly used for wireless broadband access service in rural and remote areas. The TOTOLINK CP450 suffers from a stack buffer overflow vulnerability that originates from th...

9.8CVSS8.2AI score0.0047EPSS

Exploits1References1

CNVD•added 2024/05/22 12:0 a.m.•1 views

TOTOLINK CP450 Stack Buffer Overflow Vulnerability

TOTOLINK CP450 is an outdoor wireless client terminal device manufactured by China Gion Electronics, mainly used for wireless broadband access service in rural and remote areas. The TOTOLINK CP450 suffers from a stack buffer overflow vulnerability that originates from the setLanguageCfg method...

3.8CVSS7.6AI score0.00407EPSS

Exploits1

BDU FSTEC•added 2024/05/17 12:0 a.m.•1 views

The vulnerability of the DDP microprogramming software-based wireless access point D-Link DAP-2622 allows a intruder to execute any code within the root context.

The vulnerability of the DDP microprogramming software-based wireless access point D-Link DAP-2622 lies in the lack of proper verification of the length of data provided by users before they are copied into a fixed-length stack buffer. Exploiting this vulnerability allows a malicious actor to...

8.8CVSS8AI score0.03222EPSS

Exploits0References4

BDU FSTEC•added 2024/05/17 12:0 a.m.•1 views

The vulnerability of the QTS and QuTS operating systems affects network storage devices from QNAP, caused by buffer overflows in the stack. This allows attackers to compromise data integrity.

The vulnerability of the QTS and QuTS operating systems affects QNAP network storage devices, due to buffer overflows in the stack. Exploiting this vulnerability allows a remote attacker to compromise data integrity...

5CVSS6.1AI score0.00348EPSS

Exploits0References3

Vulnrichment•added 2024/05/16 8:59 a.m.•17 views

CVE-2024-30293 Adobe Animate 2024 AI File parsing Stack base buffer overflow Remote Code execution Vulnerability

Animate versions 24.0.2, 23.0.5 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.3AI score0.00182EPSS

Exploits0References1

CNVD•added 2024/05/16 12:0 a.m.•2 views

Siemens Teamcenter Visualization and JT2Go stack buffer overflow vulnerability (CNVD-2024-23523)

Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios.Siemens JT2Go is a JT file viewer. A stack buffer overflow vulnerability exists in Siemens Teamcenter Visualization and JT2Go, which can be exploited by an attacker to execute code...

7.8CVSS7.5AI score0.00185EPSS

Exploits0References1

CNVD•added 2024/05/16 12:0 a.m.•9 views

Siemens Simcenter Nastran Stack Buffer Overflow Vulnerability

Simcenter Nastran is a finite element method solver. A stack buffer overflow vulnerability exists in Siemens Simcenter Nastran, which can be exploited by an attacker to execute code in the context of the current process when an affected application parses a specific string as a parameter to an...

7.8CVSS7.4AI score0.00106EPSS

Exploits0References1

CNVD•added 2024/05/15 12:0 a.m.•5 views

Siemens Solid Edge Stack Buffer Overflow Vulnerability (CNVD-2024-24513)

Siemens Solid Edge is an enterprise-class computer-aided design software for complex 3D modeling. Siemens Solid Edge suffers from a stack buffer overflow vulnerability that stems from improper memory management when the software parses specially crafted PAR files. An attacker can exploit the...

7.8CVSS7.5AI score0.00295EPSS

Exploits0References1

OSV•added 2024/05/14 3:39 p.m.•0 views

CVE-2024-34942

Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the funcpara1 parameter at ip/goform/exeCommand...

8.8CVSS6.2AI score0.00282EPSS

Exploits1References1

NVD•added 2024/05/14 3:38 p.m.•11 views

CVE-2024-34212

TOTOLINK CP450 v4.1.0cu.747B20191224 was discovered to contain a stack buffer overflow vulnerability in the CloudACMunualUpdate function...

7.3CVSS7.4AI score0.00295EPSS

Exploits1References1

NVD•added 2024/05/14 3:38 p.m.•6 views

CVE-2024-34213

TOTOLINK CP450 v4.1.0cu.747B20191224 was discovered to contain a stack buffer overflow vulnerability in the SetPortForwardRules function...

9.8CVSS7.4AI score0.0047EPSS

Exploits1References1