MiracleLinux 9 : redis-6.2.17-1.el9_5 (AXSA:2025-9591:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9591:01 advisory. redis: heap overflow in the lua cjson and cmsgpack libraries CVE-2022-24834 redis: possible bypass of Unix socket permissions on startup...

MiracleLinux 9 : libxml2-2.9.13-6.el9_5.2 (AXSA:2025-9745:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9745:03 advisory. libxml2: Use-After-Free in libxml2 CVE-2024-56171 libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 CVE-2025-24928 Tenable has...

MiracleLinux 9 : icu-67.1-10.el9_6 (AXSA:2025-10657:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10657:01 advisory. icu: Stack buffer overflow in the SRBRoot::addTag function CVE-2025-5222 Tenable has extracted the preceding description block directly from the MiracleLinu...

MiracleLinux 9 : corosync-3.1.9-2.el9_6 (AXSA:2025-10298:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10298:01 advisory. corosync: Stack buffer overflow from 'orftokenendianconvert' CVE-2025-30472 Tenable has extracted the preceding description block directly from the...

CVE-2025-71027

Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

Tenda AX-3 安全漏洞

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability, which stems from the wanMTU2 parameter in the fromAdvSetMacMtuWan function failing to correctly validate...

Inbit Messenger 安全漏洞

Inbit Messenger is an instant messaging suite for corporate intranets from Inbit. A security vulnerability exists in Inbit Messenger versions 4.6.0 through 4.9.0, which stems from a protocol stack overflow that could allow an unauthenticated attacker to execute arbitrary commands...

Hikvision NVR/DVR Devices 安全漏洞

Hikvision NVR/DVR Devices are a series of network cameras from Hikvision, a Chinese company. A security vulnerability exists in Hikvision NVR/DVR Devices that stems from a stack overflow in the device's search and discovery function, which could allow an attacker on the same LAN to cause the devi...

Tenda AX-3 安全漏洞

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability, which stems from the wanSpeed2 parameter in the fromAdvSetMacMtuWan function failing to correctly valida...

Tenda AX-3 安全漏洞

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability, which stems from the mac2 parameter in the fromAdvSetMacMtuWan function failing to correctly validate th...

CVE-2025-70753

Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security5g parameter of the sub4CA50 function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-71024

The CVE-2025-71024 entry concerns Tenda AX-3 (v16.03.12.10_CN) with a stack overflow in the fromAdvSetMacMtuWan function’s serviceName2 parameter. The issue can be triggered by a crafted request, leading to a Denial of Service. Connected sources (e.g., CNVD-2026-06091, RH/CVE-2025-71024, CNNVD-20...

ROS-20260113-7362

A vulnerability in the kernel/bpf/ringbuf.c component of the Linux operating system kernel is related to a buffer overflow on the stack. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

PT-2026-2454

A stack overflow vulnerability exists in the AOS-10 web-based management interface of a Mobility Gateway. Successful exploitation could allow an authenticated malicious actor to execute arbitrary code as a privileged user on the underlying operating system...

PT-2026-2764

CVE-2026-21224 Stack-based buffer overflow in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. https://t.co/nj6zlxVciK...

CVE-2025-71023

The CVE-2025-71023 vulnerability affects the Tenda AX-3 router (version 16.03.12.10_CN). A stack overflow in the mac2 parameter of the fromAdvSetMacMtuWan function is described, which can be exploited to cause a Denial of Service via a crafted request. Reports across multiple sources (NVD, RH, CN...

CVE-2025-71025

CVE-2025-71025 affects Tenda AX-3: a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. The root cause is input length validation in that function, enabling a crafted request to trigger a Denial of Service. Multiple connected sources (CNVD, RH, NVD, CNNVD, CIRCL) corr...

PT-2026-2582

Tenda AX-3 v16.03.12.10 CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-71024

Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow in the serviceName2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

CVE-2025-71026

Tenda AX-3 v16.03.12.10CN was discovered to contain a stack overflow in the wanSpeed2 parameter of the fromAdvSetMacMtuWan function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...