CVE-2025-47758

CVE-2025-47758 concerns Fuji Electric V-SFT. Affected: V-SFT versions 6.2.5.0 and earlier. Vulnerability: a stack-based buffer overflow in VS6File!CTxSubFile::get_ProgramFile_name when parsing specially crafted V7/V8 files. Impact: crash, information disclosure, and arbitrary code execution as de...

D-Link DI-8100 Stack Buffer Overflow Vulnerability

The D-Link DI-8100 is a network device designed to provide network connectivity and management capabilities. The D-Link DI-8100 suffers from a stack buffer overflow vulnerability that stems from insufficient handling of the parameters defmax/deftime/deftcpmax/deftcptime/defudpmax/defudptime/defic...

CVE-2025-4892

A vulnerability was found in code-projects Police Station Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function criminal::remove of the file source.cpp of the component Delete Record. The manipulation of the argument No leads to stack-based buffer...

CVE-2025-4810

CVE-2025-4810 affects Tenda AC7 (firmware 15.03.06.44) with the vulnerability in the function formSetRebootTimer in /goform/SetRebootTimer. The argument reboot_time can overflow a stack-based buffer, enabling a remote attack. Public exploit disclosure is indicated. Documentation consistently spec...

The vulnerability of the Windows Media component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Windows Media component in Windows operating systems is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

CVE-2025-46836 net-tools Stack-based Buffer Overflow vulnerability

net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities like ifconfig from the net-tools package do not properly validate the structure of /proc files when...

IBM Java 7.1 < 7.1.5.26 / 8.0 < 8.0.8.45

The version of IBM Java installed on the remote host is 7.1 prior to 7.1.5.26 / 8.0 prior to 8.0.8.45. It is, therefore, affected by a vulnerability as referenced in the IBM Security Update May 2025 advisory. - In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based...

Xorg: xwayland: Buffer overflow in XkbVModMaskText()

A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size...

CVE-2025-32756

A stack-based buffer overflow vulnerability CWE-121 vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8,...

Moderate: Red Hat Security Advisory: corosync security update

An update for corosync is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

Xorg: xwayland: Buffer overflow in XkbVModMaskText()

A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size...

ROS-2-643

2.643 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The vulnerabilit...

Intel PROSet/Wireless WiFi 安全漏洞

Intel PROSet/Wireless WiFi is a wireless network card driver from Intel Corporation USA. A security vulnerability exists in Intel PROSet/Wireless WiFi versions prior to 23.100, which originates from a stack buffer overflow that could result in a denial of service...

Schneider Electric EcoStruxure Power Build Rapsody 安全漏洞

Schneider Electric EcoStruxure Power Build Rapsody is a power monitoring platform from Schneider Electric France. Schneider Electric EcoStruxure Power Build Rapsody suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to achieve arbitrary code execution on an...

Siemens SCALANCE LPE9403 缓冲区错误漏洞

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to...

ALSA-2025:7478 Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

ALSA-2025:7201 Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

Moderate: corosync security update

The corosync packages provide the Corosync Cluster Engine and C APIs for AlmaLinux cluster software. Security Fixes: corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

CVE-2025-1533

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...

CVE-2025-1533

CVE-2025-1533 affects Asus Armoury Crate through the kernel driver AsIO3.sys . TALOS details a stack-based buffer overflow triggered by an overlong Win32 path that is converted to an NT namespace path via a 255-char local buffer (ntImagePath), enabling a user to trigger a kernel-level overflow li...