Lucene search
K

34190 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/14 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: libxslt (UTSA-2025-990908)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990908 advisory. Uncontrolled recursion inXPath evaluationin libxml2 up to and including version 2.9.14 allows a local attacker to cause a stack overflow via crafted expressions. XPa...

6.2CVSS5AI score0.00144EPSS
Exploits0References4
CNVD
CNVD
added 2025/11/14 12:0 a.m.3 views

TOTOLINK A7000R Stack Buffer Overflow Vulnerability

TOTOLINK A7000R is a wireless router from China's Gion Electronics TOTOLINK that supports WiFi7 technology for home or small business network environments. The TOTOLINK A7000R suffers from a stack buffer overflow vulnerability that originates from the urldecode function's addEffect parameter...

7.5CVSS7.1AI score0.00331EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/13 11:8 p.m.6 views

CVE-2021-4464

FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service 'webs' fails to enforce maximum lengths for Cookie header values. When a cookie longer than 511 bytes is processed, a stack buffer is overrun,...

9.3CVSS7.1AI score0.01777EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/13 9:31 p.m.10 views

EUVD-2025-175373

A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage handling module. The vulnerability occurs when the "Serial Number" field from a USB device is read via sscanf into a 64-byte stack buffer, while fgets reads up to 127...

7.4AI score0.00526EPSS
Exploits1References5
OSV
OSV
added 2025/11/13 8:15 p.m.4 views

CVE-2025-60679

A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2FWv1.10CNB05R1B011D88210.img in the upload.cgi module, which handles firmware version information. The vulnerability occurs because /proc/version is read into a 512-byte buffer and then concatenated usin...

8.8CVSS6.4AI score0.00581EPSS
Exploits1References4
NVD
NVD
added 2025/11/13 7:15 p.m.10 views

CVE-2025-60674

A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage handling module. The vulnerability occurs when the "Serial Number" field from a USB device is read via sscanf into a 64-byte stack buffer, while fgets reads up to 127...

6.8CVSS0.00526EPSS
Exploits1References4
OSV
OSV
added 2025/11/13 7:15 p.m.4 views

CVE-2025-60674

A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage handling module. The vulnerability occurs when the "Serial Number" field from a USB device is read via sscanf into a 64-byte stack buffer, while fgets reads up to 127...

6.8CVSS6.5AI score0.00526EPSS
Exploits1References4
EUVD
EUVD
added 2025/11/13 6:31 p.m.4 views

EUVD-2025-175333

A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The functions getmacfromip and getipfrommac use sscanf with overly permissive "%100s" format specifiers to parse entries from /proc/net/arp into...

8.4CVSS7.5AI score0.00215EPSS
Exploits1References4
EUVD
EUVD
added 2025/11/13 6:31 p.m.3 views

EUVD-2025-175304

A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary setDefResponse function. The binary reads the "IpAddress" parameter from a web request and copies it into a fixed-size stack...

6.5CVSS7.7AI score0.00519EPSS
Exploits1References4
NVD
NVD
added 2025/11/13 6:15 p.m.3 views

CVE-2025-60693

A stack-based buffer overflow exists in the getmergemac function of the httpd binary on Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The function concatenates up to six user-supplied CGI parameters matching 05 into a fixed-size buffer a2 without proper bounds checking, appending...

6.5CVSS0.00814EPSS
Exploits1References3
NVD
NVD
added 2025/11/13 5:15 p.m.3 views

CVE-2025-60692

A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The functions getmacfromip and getipfrommac use sscanf with overly permissive "%100s" format specifiers to parse entries from /proc/net/arp into...

8.4CVSS0.00215EPSS
Exploits1References3
NVD
NVD
added 2025/11/13 5:15 p.m.3 views

CVE-2025-60694

A stack-based buffer overflow exists in the validatestaticroute function of the httpd binary on Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The function improperly concatenates user-supplied CGI parameters routeipaddr03, routenetmask03, routegateway03 into fixed-size buffers v6,...

7.5CVSS0.01258EPSS
Exploits1References3
NVD
NVD
added 2025/11/13 4:15 p.m.3 views

CVE-2025-60686

A local stack-based buffer overflow vulnerability exists in the infostat.cgi and cstecgi.cgi binaries of ToToLink routers A720R V4.1.5cu.614B20230630, LR1200GB V9.1.0u.6619B20230130, and NR1800X V9.1.0u.6681B20230703. Both programs parse the contents of /proc/net/arp using sscanf with "%s" format...

5.1CVSS0.00204EPSS
Exploits1References3
NVD
NVD
added 2025/11/13 4:15 p.m.7 views

CVE-2025-60688

A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary setDefResponse function. The binary reads the "IpAddress" parameter from a web request and copies it into a fixed-size stack...

6.5CVSS0.00519EPSS
Exploits1References3
OSV
OSV
added 2025/11/13 4:15 p.m.4 views

CVE-2025-60684

A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary sub42F32C function. The web interface reads the "lang" parameter and constructs Help URL strings using sprintf into fixed-siz...

6.5CVSS6.6AI score0.00519EPSS
Exploits1References3
NVD
NVD
added 2025/11/13 10:15 a.m.4 views

CVE-2025-7704

Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability...

5.4CVSS0.00203EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/13 9:12 a.m.3 views

CVE-2025-7704 Supermicro BMC SMASH services has a Stack-based buffer overflow vulnerability

Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability...

5.4CVSS6.9AI score0.00203EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 9:12 a.m.6 views

CVE-2025-7704 Supermicro BMC SMASH services has a Stack-based buffer overflow vulnerability

Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability...

5.4CVSS0.00203EPSS
Exploits0References1
CVE
CVE
added 2025/11/13 9:12 a.m.10 views

CVE-2025-7704

CVE-2025-7704 describes a stack-based overflow in the Insyde SMASH shell used by Supermicro BMC. The issue affects the SMASH service component on Supermicro BMC, with the underlying cause identified as a stack-based buffer overflow in the shell. Public descriptions consistently reference a potent...

5.4CVSS6.9AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/13 1:0 a.m.9 views

CVE-2025-33202

NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where an attacker could cause a stack overflow by sending extra-large payloads. A successful exploit of this vulnerability might lead to denial of service...

6.5CVSS6.9AI score0.00388EPSS
Exploits0References1
Rows per page
Query Builder