Tenda AC5 Stack Buffer Overflow Vulnerability (CNVD-2025-15273)

Tenda AC5 is a wireless router from Tenda, a Chinese company. The Tenda AC5 suffers from a stack buffer overflow vulnerability, which originates from the failure of the parameters time and timeZone in the file /goform/SetSysTimeCfg to correctly validate the length of the input data, which can be...

CVE-2025-6072 Stack Buffer Overflow in MQTTCore

Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to the control network, and CVE-2025-6074 is exploited, the attacker can use the JSON configuration to overflow the date of expiration field.Thi...

CVE-2025-6072

CVE-2025-6072 affects ABB RMC-100 and RMC-100 LITE. The root cause is a stack-based buffer overflow in the REST interface when processing JSON configuration, enabling overflow of the expiration date field (and related CVE-2025-6074 flow). Impact cited includes potential denial of service and expo...

CVE-2025-6072 Stack Buffer Overflow in MQTTCore

Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to the control network, and CVE-2025-6074 is exploited, the attacker can use the JSON configuration to overflow the date of expiration field.Thi...

CVE-2025-6073 Stack Buffer Overflow in MQTTCore

Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to the control network, and user/password broker authentication is enabled, and CVE-2025-6074 is exploited, the attacker can overflow the buffer...

CVE-2025-6073

CVE-2025-6073 is a stack-based buffer overflow in ABB RMC-100 and RMC-100 LITE caused by REST interface exposure. It affects RMC-100 builds 2105457-043 to 2105457-045 and RMC-100 LITE builds 2106229-015 to 2106229-016. The issue is tied to CVE-2025-6074, which describes a related hard-coded key v...

CVE-2025-6073 Stack Buffer Overflow in MQTTCore

Stack-based Buffer Overflow vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to the control network, and user/password broker authentication is enabled, and CVE-2025-6074 is exploited, the attacker can overflow the buffer...

SUSE-SU-2025:02216-1 Security update for icu

This update for icu fixes the following issues: - CVE-2025-5222: Fixed stack buffer overflow in the SRBRoot:addTag function bsc1243721...

AlmaLinux 9 : corosync (ALSA-2025:7201)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:7201 advisory. corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 Tenable has extracted the preceding description block directly from the AlmaLinux...

D-Link DIR-619L /formAutoDetecWAN_wizard4 File Stack Buffer Overflow Vulnerability

The D-Link DIR-619L is a wireless router from China-based AUO D-Link. A stack buffer overflow vulnerability exists in the D-Link DIR-619L /formAutoDetecWANwizard4 file due to incorrect boundary checking in the function formAutoDetecWANwizard4 of the file /goform/formAutoDetecWANwizard4 caused. An...

SUSE SLED15 / SLES15 Security Update : icu (SUSE-SU-2025:02059-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02059-1 advisory. - CVE-2025-5222: Stack buffer overflow in the SRBRoot:addTag function bsc1243721. Tenable has extracted the preceding...

Oat++ 安全漏洞

Oat++ is a C++ web framework open-sourced by Oat++ for highly scalable and resource efficient web applications. A security vulnerability exists in oatpp Oat++ 1.3.1 and earlier versions, which stems from a stack buffer overflow in the deserializeArray function in Deserializer.cpp...

SUSE-SU-2025:02059-1 Security update for icu

This update for icu fixes the following issues: - CVE-2025-5222: Stack buffer overflow in the SRBRoot:addTag function bsc1243721...

NETGEAR EX3700 Stack Buffer Overflow Vulnerability

The NETGEAR EX3700 is a dual-band wireless accessor with a maximum transmission rate of 750Mbps. The NETGEAR EX3700 suffers from a stack buffer overflow vulnerability that stems from the lack of proper validation of user-supplied data in the function sub41619C in file/mtd, which can be exploited ...

CVE-2025-6373

A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. This vulnerability affects the function formSetWizard1 of the file /goform/formWlSiteSurvey. The manipulation of the argument curTime leads to stack-based buffer overflow. The attack can be initiated remotely. T...

OSV-2025-481 Stack-buffer-overflow in void glz::from<10000u, int>::op<glz::opts_csv{10000u,

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=425730091 Crash type: Stack-buffer-overflow READ 1 Crash state: void glz::from::op::op::opglz::optscsv10000u,...

OSV-2025-480 Stack-buffer-overflow in void glz::from<10000u, std::__1::__bit_reference<std::__1::vector<bool, std::__1

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=425725152 Crash type: Stack-buffer-overflow READ 1 Crash state: void glz::from::op::opglz::optscsv10000u,...

PT-2025-27393 · Git +1 · Glaze

Name of the Vulnerable Software and Affected Versions: glz affected versions not specified Description: The software contains a stack-buffer-overflow vulnerability. The crash occurs during the glz::from and glz::visit functions when processing data, potentially leading to a read error. The crash...

TOTOLINK EX1200T 安全漏洞

The TOTOLINK EX1200T is a dual-band wireless signal amplifier that is primarily used to extend the coverage of an existing wireless network. The TOTOLINK EX1200T suffers from a stack buffer overflow vulnerability that originates from the failure of the function setStaticDhcpConfig in the file...

PT-2025-27394 · Git +1 · Glaze

Name of the Vulnerable Software and Affected Versions: glz affected versions not specified Description: The software contains a stack-buffer-overflow vulnerability. The crash occurs within the glz::from and glz::visit functions when processing data. The crash state involves operations with...