IP-COM W30AP 安全漏洞

The IP-COM W30AP is a wireless access point device from the US company IP-COM. The IP-COM W30AP version 1.0.0.111340 and earlier have a security vulnerability. This vulnerability stems from incorrect handling of the parameter “data” in the function R7WebsSecurityHandler within the...

Autodesk 3ds Max < 2026.3.2 Multiple Vulnerabilities

The version of Autodesk 3ds Max installed on the remote Windows host is prior to 2026.3.2. It is, therefore, affected by the following vulnerabilities: - A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor...

llama.cpp 安全漏洞

Llama.cpp is a multimodal model developed by Georgi Gerganov. Versions of Llama.cpp with the version number 55abc39 and earlier contain security vulnerabilities, which stem from a stack buffer overflow in the GBNF syntax processor...

PT-2026-6719

Name of the Vulnerable Software and Affected Versions IP-COM W30AP versions up to 1.0.0.111340 Description A stack-based buffer overflow exists in the R7WebsSecurityHandler function within the POST Request Handler component. This issue is triggered by manipulating the data argument sent to the...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: gstreamer1-plugins-bad-free (UTSA-2026-005272)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005272 advisory. GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

time 安全漏洞

time is a date and time handling library in Rust developed by Time. Versions of time from 0.3.6 to 0.3.47 contained a security vulnerability. This vulnerability occurred when user-provided inputs were passed to types that parse RFC 2822 formats, potentially leading to a denial-of-service attack d...

Atlassian Jira Service Management Data Center and Server 5.12.0 < 5.12.29 (JSDSERVER-16465)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16465 advisory. - Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This...

CVE-2020-37126

Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows attackers to overwrite Structured Exception Handler SEH registers. Attackers can exploit the vulnerability by crafting a malicious Unicode input that triggers an access violation and...

EUVD-2020-31022

Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows attackers to overwrite Structured Exception Handler SEH registers. Attackers can exploit the vulnerability by crafting a malicious Unicode input that triggers an access violation and...

CVE-2020-37126 Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow (SEH)

Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows attackers to overwrite Structured Exception Handler SEH registers. Attackers can exploit the vulnerability by crafting a malicious Unicode input that triggers an access violation and...

CVE-2020-37126 Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow (SEH)

Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows attackers to overwrite Structured Exception Handler SEH registers. Attackers can exploit the vulnerability by crafting a malicious Unicode input that triggers an access violation and...

CVE-2020-37126

CVE-2020-37126 affects Free Desktop Clock 3.0. A stack overflow in the Time Zones display name input can overwrite SEH registers via crafted Unicode input, triggering an access violation and potentially enabling arbitrary code execution. Documented impact is high/critical (local and network vecto...

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

nodejs: Nodejs denial of service

A stack overflow flaw has been discovered in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications tha...

libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication

A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an internal size calculation can overflow due to improper use of signed integers. This results in...

libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication

A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an internal size calculation can overflow due to improper use of signed integers. This results in...

libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication

A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an internal size calculation can overflow due to improper use of signed integers. This results in...

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Drive Software Free Desktop Clock 安全漏洞

Drive Software Free Desktop Clock is a clock software developed by the Drive Software company. Version 3.0 of Drive Software Free Desktop Clock contains a security vulnerability. This vulnerability stems from a stack overflow issue when entering time zone names, which may lead to the execution of...

Important: ImageMagick

Issue Overview: ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL Magick Scripting Language command when writing to MSL format. Version 7.1.2-13 fixes the issue...