CVE-2021-34345

CVE-2021-34345 affects QNAP NVR Storage Expansion: a stack buffer overflow in the NVR Storage Expansion component could allow arbitrary code execution. A fix was released in version 1.0.6 (and later) of NVR Storage Expansion.

CVE-2021-34344 Stack Buffer Overflow Vulnerability in QUSBCam2

A stack buffer overflow vulnerability has been reported to affect QNAP device running QUSBCam2. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QUSBCam2: QTS 4.5.4: QUSBCam2 1.1.4 2021/07/30 and lat...

CVE-2021-34344

CVE-2021-34344 is a stack buffer overflow affecting QNAP QUSBCam2 used on NAS devices. The issue allows arbitrary code execution when exploited via the affected service. Affected versions and fixes are specified across multiple QNAP platforms: QTS 4.5.4: QUSBCam2 1.1.4 (from 2021-07-30) and later...

CVE-2021-34343 Buffer Overflow Vulnerability in QTS, QuTS hero, and QuTScloud

A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QTS, QuTScloud, QuTS hero: QTS...

CVE-2021-34343

CVE-2021-34343 describes a stack buffer overflow affecting QNAP devices running QTS, QuTScloud, and QuTS hero . The vulnerability could allow an attacker to execute arbitrary code. Affected releases have been fixed in: QTS 4.5.4.1715 build 20210630 and later , QTS 5.0.0.1716 build 20210701 and la...

CVE-2021-28816 Stack Buffer Overflow Vulnerabilities in QTS, QuTS hero, and QuTScloud

A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QTS, QuTScloud, QuTS hero: QTS...

CVE-2021-28816

CVE-2021-28816 is a stack-based buffer overflow affecting QNAP QTS, QuTScloud, and QuTS hero. The vulnerability could allow arbitrary code execution if exploited. Affected QTS/QuTS versions fixed include QTS 4.5.4.1715 build 20210630 and later, QTS 5.0.0.1716 build 20210701 and later, QTS 4.3.3.1...

ROS-2-1225

2.1225 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The...

ROS-2-807

2.807 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The vulnerabilit...

ROS-2-1177

2.1177 Vulnerability in PPPD CVE-2020-8597 1. Vulnerability Description: The issue CVE-2020-8597 is a stack buffer overflow vulnerability resulting from a logic error in the EAP Extensible Authentication Protocol packet parser in PPPD eaprequest and eapresponse functions in eap.c. The...

Remote Code Execution (RCE)

ntfs-3g is vulnerable to Remote Code Execution RCE. The vulnerability exists due to a stack buffer overflow...

CVE-2021-35267

NTFS-3G versions 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root...

CVE-2021-35267

NTFS-3G versions 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root...

CVE-2021-35267

NTFS-3G is affected by CVE-2021-35267 for versions older than 2021.8.22. The issue is a stack/heap buffer overflow in MFT/MFTMirror handling that can enable code execution or privilege escalation when setuid-root. Connected advisories from Astra Linux and Alpine Linux confirm the

CVE-2021-35267

NTFS-3G versions 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root...

Huawei HarmonyOS 缓冲区错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A stack buffer overflow vulnerability exists in the Kernel module of Huawei HarmonyOS. An attacker can exploit the vulnerability to cause an out-of-bounds re...

Huawei Smartphone 缓冲区错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a microkernel-based distributed operating system. A stack buffer overflow vulnerability exists in the Kernel module of Huawei HarmonyOS, which provides a microkernel-based, full-scenario distributed operating system. An attack...

Huawei Smartphone 缓冲区错误漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a microkernel-based distributed operating system. A stack buffer overflow vulnerability exists in the Kernel module of Huawei HarmonyOS, which provides a microkernel-based, full-scenario distributed operating system. An attack...

Updated libspf2 packages fix security vulnerability

A stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code execution via malicious crafted SPF explanation messages CVE-2021-20314...

Advantech WebAccess Stack Buffer Overflow Vulnerability (CNVD-2021-80272)

Advantech WebAccess is Advantech's suite of HMI/SCADA software based on a browser architecture. A stack buffer overflow vulnerability exists in Advantech WebAccess 9.02 and earlier versions. The vulnerability stems from a lack of proper validation of the length of user-supplied data. An attacker...