CVE-2022-37019 HP PC BIOS May 2024 Security Updates for Potential Stack Buffer Overflows

Potential vulnerabilities have been identified in the system BIOS for certain HP PC products which may allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerabilities...

HP PC BIOS May 2024 Security Updates for Potential Stack Buffer Overflows

Potential vulnerabilities have been identified in the system BIOS for certain HP PC products, which might allow escalation of privileges and code execution. HP is releasing firmware updates to mitigate the potential vulnerabilities. HP has identified affected platforms and corresponding SoftPaqs...

RHEL 7 : procps (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - procps-ng, procps: process hiding through race condition enumerating /proc CVE-2018-1121 - procps-ng befo...

RHEL 5 : flac (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - flac: Heap buffer write overflow in readresidualpartitionedrice CVE-2014-9028 - Stack-based buffer overfl...

RHEL 9 : espeak-ng (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - espeak-ng: buffer overflow in ReadClause function at readclause.c CVE-2023-49993 - Espeak-ng 1.52-dev was...

RHEL 8 : espeak-ng (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - espeak-ng: buffer overflow in ReadClause function at readclause.c CVE-2023-49993 - Espeak-ng 1.52-dev was...

RHEL 9 : gsl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - gsl: Stack buffer overflow in gslstatsquantilefromsorteddata CVE-2020-35357 Note that Nessus has not tested for thi...

RHEL 5 : sqlite (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sqlite: stack buffer overflow in src/printf.c CVE-2015-3416 - chromium-browser: pointer disclosure in...

RHEL 8 : opensc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opensc: Stack buffer overflow issues in various places CVE-2021-42782 - A heap double free issue was foun...

RHEL 9 : gcc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libiberty: Heap/stack buffer overflow in the dlanglname function in d-demangle.c CVE-2021-3826 - binutils...

RHEL 7 : openjpeg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - OpenJPEG 1.5.1 allows remote...

RHEL 6 : openjpeg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openjpeg: Stack-buffer overflow in the pgxtoimage function CVE-2017-17479 - Heap-based buffer overflow...

SUSE CVE-2024-36032

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: fix info leak when fetching fw build id Add the missing sanity checks and move the 255-byte build-id buffer off the stack to avoid leaking stack data through debugfs in case the build-info reply is malformed...

Stack buffer overflow vulnerability in libigl readOFF.cpp function

libigl is libigl open source a simple C++ geometry processing library . A stack buffer overflow vulnerability exists in the libigl readOFF.cpp function. The vulnerability is caused by incorrect boundary checking of the readOFF function. An attacker can exploit this vulnerability to cause a buffer...

CVE-2024-35333

A stack-buffer-overflow vulnerability exists in the readcharsetdecl function of html2xhtml 1.3. This vulnerability occurs due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this vulnerability by providing a specially crafted input to the...

CVE-2024-35333

A stack-buffer-overflow vulnerability exists in the readcharsetdecl function of html2xhtml 1.3. This vulnerability occurs due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this vulnerability by providing a specially crafted input to the...

CVE-2024-35333

CVE-2024-35333 affects html2xhtml version 1.3, specifically the read_charset_decl function. The root cause is improper bounds checking when copying data into a fixed-size stack buffer, allowing a stack-based overflow. Reported impact includes arbitrary code execution, denial of service, or data c...

PT-2024-26438 · Unknown · Html2Xhtml

Name of the Vulnerable Software and Affected Versions: html2xhtml version 1.3 Description: A stack-buffer-overflow issue exists in the read charset decl function due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this by providing a specially...

Tenda AX1806 formSetIptv Stack Buffer Overflow Vulnerability

The Tenda AX1806 is a home wireless router device. The Tenda AX1806 suffers from a stack buffer overflow vulnerability that originates via the adv.iptv.stbpvid parameter in the function formSetIptv, which can be exploited by an attacker to crash an application or execute arbitrary code in the...

The vulnerability of the setMacFilterRules function in TOTOLINK CP450 router microprogramming software allows a intruder to execute arbitrary code.

The vulnerability of the setMacFilterRules function in TOTOLINK CP450 router microprogramming software is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...