PT-2025-52268

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A flaw exists in the Tenda WH450 that allows remote attackers to trigger a stack-based buffer overflow. The issue is related to the manipulation of the ssid index argument within the /goform/onSSIDChang...

proxychains-ng 安全漏洞

proxychains-ng is a preloaded program by rofl0r individual developers. A security vulnerability exists in proxychains-ng versions 4.17 and earlier and cc005b7 and earlier, which stems from a stack buffer overflow in the proxyfromstring function, which could lead to memory corruption or a crash...

(0Day) NSF Unidata NetCDF-C Time Unit Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NSF Unidata NetCDF-C. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

PT-2025-52243

Name of the Vulnerable Software and Affected Versions NI LabVIEW versions prior to 2025 Q3 25.3 Description A stack-based buffer overflow exists in the LVResFile::FindRsrcListEntry function when parsing a corrupted VI file. Successful exploitation requires a user to open a specially crafted VI,...

PT-2025-52261

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A security flaw exists in Tenda WH450 version 1.0.0.18. The issue is related to the manipulation of the GO argument within the HTTP Request Handler component, specifically in the file...

PT-2025-52601

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A stack-based buffer overflow issue exists in the processing of the file /goform/SafeUrlFilter within Tenda WH450 version 1.0.0.18. Manipulation of the page argument in this file can lead to the overflo...

Tenda WH450 安全漏洞

Tenda WH450 is a wireless access point from Tenda China. A security vulnerability exists in Tenda WH450 version 1.0.0.18, which originates from improper handling of the parameter GO in the file /goform/wirelessRestart, which could result in a stack buffer overflow...

EulerOS Virtualization 2.13.0 : ncurses (EulerOS-SA-2025-2589)

According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the...

PT-2025-53672

Name of the Vulnerable Software and Affected Versions Tenda WH450 version 1.0.0.18 Description A stack-based buffer overflow exists in the Tenda WH450 router. The issue is related to the manipulation of the ip1 argument within an unknown function of the /goform/PPTPServer file. This allows for...

SUSE SLED15 / SLES15 Security Update : poppler (SUSE-SU-2025:4439-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:4439-1 advisory. - CVE-2025-11896: Fixed infinite recursion leading to stack overflow due to object loop in PDF CMap bsc1252337 Tenable...

SUSE SLED15: libpoppler-cpp0 / libpoppler-cpp0-32bit / libpoppler-devel / etc (SUSE-SU-2025:4434-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:4434-1 advisory. - CVE-2025-11896: Fixed infinite recursion leading to stack overflow due to object loop in PDF CMap...

PT-2025-52585

Name of the Vulnerable Software and Affected Versions Tenda AC18 version 15.03.05.05 Description A stack-based buffer overflow exists in the HTTP Request Handler component of Tenda AC18 version 15.03.05.05. The issue is located in the strcpy function within the file /goform/GetParentControlInfo...

EulerOS Virtualization 2.13.1 : ncurses (EulerOS-SA-2025-2554)

According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the...

PT-2025-52353

Name of the Vulnerable Software and Affected Versions rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 Description The software contains a stack-based buffer overflow in the proxy from string function, located in src/libproxychains.c. This occurs when parsing...

EulerOS Virtualization 2.13.0 : libtiff (EulerOS-SA-2025-2585)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the fil...

AZL-72697 CVE-2025-68114 affecting package capstone 4.0.2-4

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

CVE-2025-68114

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

CVE-2025-68114

Capstone CVE-2025-68114 affects Capstone 6.0.0-Alpha5 and earlier. The vulnerability arises from an unchecked return value from vsnprintf in SStream_concat, which can drive SStream’s index negative or past the end and cause a stack buffer underflow/overflow on the next write. The issue has a fixe...

EUVD-2025-203995

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

CVE-2025-68114 Capstone doesn't check vsnprintf return in SStream_concat, allows stack buffer underflow and overflow

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...