CVE-2024-4242

A vulnerability was found in Tenda W9 1.0.0.74456. It has been rated as critical. This issue affects the function formwrlSSIDget of the file /goform/wifiSSIDget. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has...

The vulnerability of the SetCmdlineRun function (/goform/SetCmdlineRun) in the Tenda A18 router microprogramming system allows a attacker to cause a service failure.

The vulnerability of the SetCmdlineRun function /goform/SetCmdlineRun in the Tenda A18 router microprogramming system is related to buffer overflow in the stack. Exploiting this vulnerability could allow a malicious actor to trigger a service failure by sending a specially crafted POST request wi...

CVE-2024-39757

A stack-based buffer overflow vulnerability exists in the wireless.cgi AddMac functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger this vulnerability...

CVE-2024-53320

Qualisys C++ SDK commit a32a21a was discovered to contain multiple stack buffer overflows via the GetCurrentFrame, SaveCapture, and LoadProject functions...

CVE-2025-0373

On 64-bit systems, the implementation of VOPVPTOFH in the cd9660, tarfs and ext2fs filesystems overflows the destination FID buffer by 4 bytes, a stack buffer overflow. A NFS server that exports a cd9660, tarfs, or ext2fs file system can be made to panic by mounting and accessing the export with ...

CVE-2025-0848

The CVE-2025-0848 entry concerns the Tenda A18 router (versions up to 15.13.07.09) with a vulnerability in the HTTP POST handler function SetCmdlineRun. The root cause is a stack-based buffer overflow triggered by manipulating the wpapsk_crypto5g argument, which can be exploited remotely. Public ...

OSV-2025-74 Stack-buffer-overflow in xmlValidateElementContent

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392687022 Crash type: Stack-buffer-overflow WRITE Crash state: xmlValidateElementContent xmlValidateOneElement xmlValidateElement...

OSV-2025-63 Stack-buffer-underflow in gs_type1_interpret

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=391934080 Crash type: Stack-buffer-underflow READ 4 Crash state: gstype1interpret copiedtype1glyphoutline gsdefaultglyphinfo...

Vulnerability of microprogrammed software in PLANET Technology switches, related to buffer overflow in the stack, allowing a hacker to execute arbitrary code.

The vulnerability of PLANET Technology’s microprogrammed switching software is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted HTTP request...

PT-2025-5664 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-underflow read error. Technical details include a crash type of Stack-buffer-underflow READ 4, with the crash stat...

The vulnerability of the S1AP protocol implementation in the NextEPC module allows a violator to enhance their privileges.

The vulnerability of the S1AP protocol implementation in the NextEPC module is related to the execution of operations outside the stack buffer. Exploiting this vulnerability can allow a malicious actor to enhance their privileges by sending a specially crafted NAS message...

SunGrow WiNet-S 安全漏洞

SunGrow WiNet-S is a LAN communication module from SunGrow, China. A stack buffer overflow vulnerability exists in SunGrow WiNet-S stored messages. The vulnerability stems from the base code not checking the bounds of the buffer used to store messages when replicating timestamped reads of MQTT...

SunGrow WiNet-S 安全漏洞

SunGrow WiNet-S is a LAN communication module from SunGrow, China. The SunGrow WiNet-S suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause a denial of service...

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

PoC for CVE-2025-0282 Remote Unauthenticated Stack Buffer O...

Exploit for Stack-based Buffer Overflow in Ivanti Connect_Secure

PoC for CVE-2025-0282 Remote Unauthenticated Stack Buffer O...

CVE-2023-37032

A Stack-based buffer overflow in the Mobile Management Entity MME of Magma versions = 1.8.0 fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486 allows remote attackers to crash the MME with an unauthenticated cellphone by sending a NAS packet containing an oversized Emergency Number Lis...

OPENSUSE-SU-2025:0018-1 Security update for chromium

This update for chromium fixes the following issues: - Chromium 132.0.6834.83 stable released 2024-01-14 boo1235892 CVE-2025-0434: Out of bounds memory access in V8 CVE-2025-0435: Inappropriate implementation in Navigation CVE-2025-0436: Integer overflow in Skia CVE-2025-0437: Out of bounds read ...

Adobe Substance 3D Stager Stack Buffer Overflow Vulnerability

Adobe Substance 3D Stager is a virtual 3D studio from the American company Audobee Adobe. Adobe Substance 3D Stager suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...

CVE-2025-0438

Stack buffer overflow in Tracing in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-0438

Stack buffer overflow in Tracing in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Chromium security severity: High...