Tenda AC21 安全漏洞

Tenda AC21 is a dual-band Gigabit wireless router launched by Tenda Technology, designed for home high-speed Internet needs, supporting 802.11acwave2 technology, dual-band concurrent rate up to 2033Mbps, of which the 5GHz band rate up to 1733Mbps, to meet the high-bandwidth applications, such as ...

CVE-2025-8727 A stack buffer overflow vulnerability exists in the Supermicro BMC Web function(SSL).

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

EUVD-2025-197956

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53680)

ipvs: vulnerability causes undefined behavior due to uninitialized stack access in ipvsprotocolinit, which is fixed by zeroing the on-stack buffer to prevent out-of-bound accesses. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

Linksys E1200 Stack Buffer Overflow Vulnerability

The Linksys E1200 is a router from Linksys USA. The Linksys E1200 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to cause the execution of arbitrary code or a denial of service...

Supermicro BMC 安全漏洞

The SuperMicro BMC is a firmware from SuperMicro USA used in devices such as servers, top-of-rack switches or RAID devices. A security vulnerability exists in the Supermicro BMC Shared library that originates from a stack buffer overflow and could lead to arbitrary code execution...

Supermicro BMC Firmware 安全漏洞

Supermicro BMC Firmware is a system firmware from Supermicro Corporation USA. A security vulnerability exists in Supermicro BMC Firmware that originates from a stack buffer overflow in the BMC Web function that could lead to arbitrary code execution...

EUVD-2025-175334

A stack-based buffer overflow exists in the httpd binary of Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The applycgi and blockcgi functions copy user-supplied input from the "url" CGI parameter into stack buffers v36, v29 using sprintf without bounds checking. Because these buffe...

CVE-2025-60691

A stack-based buffer overflow exists in the httpd binary of Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The applycgi and blockcgi functions copy user-supplied input from the "url" CGI parameter into stack buffers v36, v29 using sprintf without bounds checking. Because these buffe...

CVE-2025-60686

A local stack-based buffer overflow vulnerability exists in the infostat.cgi and cstecgi.cgi binaries of ToToLink routers A720R V4.1.5cu.614B20230630, LR1200GB V9.1.0u.6619B20230130, and NR1800X V9.1.0u.6681B20230703. Both programs parse the contents of /proc/net/arp using sscanf with "%s" format...

CVE-2025-60685

A stack buffer overflow exists in the ToToLink A720R Router firmware V4.1.5cu.614B20230630 within the sysconf binary sub401EE0 function. The binary reads the /proc/stat file using fgets into a local buffer and subsequently parses the line using sscanf into a single-byte variable with the %s forma...

D-Link DIR-816A2 安全漏洞

D-Link DIR-816A2 is a router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-816A2 that stems from improper buffer sizing when the upload.cgi module handles /proc/version, which could result in a stack buffer overflow...

Linksys E1200 安全漏洞

Linksys E1200 is a router from Linksys USA. A security vulnerability exists in the Linksys E1200 E1200v2.0.11.001us.tar.gz version, which stems from a stack buffer overflow in the libshared.so library that could lead to memory corruption, denial of service, or execution of arbitrary code...

CVE-2025-60684

CVE-2025-60684 affects ToToLink LR1200GB and NR1800X router firmware (LR1200GB: V9.1.0u.6619_B20230130; NR1800X: V9.1.0u.6681_B20230703). The vulnerability exists in the cstecgi.cgi binary (sub_42F32C) where the web interface reads the language parameter and builds Help URL strings using sprintf(...

D-Link DIR-878 安全漏洞

The D-Link DIR-878 is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-878 that originates from improperly reading the Serial Number field in the rc binary's USB storage handling module, which could result in a stack buffer overflow...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20558)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20558 advisory. 6.12.0-103.40.4.2.el10uek - x86/vmscape: Warn when STIBP is disabled with SMT Pawan Gupta Orabug: 38343659 - x86/bugs: Move cpubugssmtupdate down Pawan...

CLSA-2025-1762544767 gstreamer1-plugins-base: Fix of CVE-2024-47538

CVE-2024-47538: fix stack-buffer overflow in vorbishandleidentificationpacket function by limiting writing beyond boundaries of position array...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990585)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990585 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989453)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989453 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989727)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989727 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/speculation: Fill RSB on vmexit for IBRS Prevent RSB underflow/poisoning attacks with RSB...