34194 matches found
CVE-2025-60684
A stack buffer overflow vulnerability exists in the ToToLink LR1200GB V9.1.0u.6619B20230130 and NR1800X V9.1.0u.6681B20230703 Router firmware within the cstecgi.cgi binary sub42F32C function. The web interface reads the "lang" parameter and constructs Help URL strings using sprintf into fixed-siz...
CVE-2025-60685
A stack buffer overflow exists in the ToToLink A720R Router firmware V4.1.5cu.614B20230630 within the sysconf binary sub401EE0 function. The binary reads the /proc/stat file using fgets into a local buffer and subsequently parses the line using sscanf into a single-byte variable with the %s forma...
CVE-2025-60692
A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The functions getmacfromip and getipfrommac use sscanf with overly permissive "%100s" format specifiers to parse entries from /proc/net/arp into...
Linksys E7350 安全漏洞
Linksys E7350 is a dual-band WiFi 6 router with AX1800 speeds from Linksys USA. A security vulnerability exists in the Linksys E7350 version 1.1.00.032, which originates from a stack buffer overflow in the mtkdut binary file, which could result in memory corruption, denial of service, or executio...
Linksys E1200 安全漏洞
The Linksys E1200 is a router from Linksys USA. The Linksys E1200 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to cause the execution of arbitrary code or a denial of service...
Linksys E1200 安全漏洞
The Linksys E1200 is a router from Linksys USA. The Linksys E1200 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to cause the execution of arbitrary code or a denial of service...
Linksys E1200 安全漏洞
Linksys E1200 is a router from Linksys USA. A security vulnerability exists in the Linksys E1200 E1200v2.0.11.001us.tar.gz version, which originates from a stack buffer overflow in the httpd binary, which could lead to the execution of arbitrary code or a denial of service...
Linksys RE7000 安全漏洞
Linksys RE7000 is a wireless signal extender from Linksys, Inc. A security vulnerability exists in the Linksys RE7000 FWv2.0.152112301012 version, which originates from a stack buffer overflow in the makeRequest.cgi binary file, which could lead to a denial of service or execution of arbitrary co...
CVE-2025-60690
A stack-based buffer overflow exists in the getmergeipaddr function of the httpd binary on Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The function concatenates up to four user-supplied CGI parameters matching 03 into a fixed-size buffer a2 without bounds checking. Remote attacke...
CVE-2025-60685
CVE-2025-60685 affects Totolink A720R router firmware V4.1.5cu.614_B20230630 in the sysconf binary (sub_401EE0). The function reads /proc/stat using fgets() into a local buffer and then parses the line with sscanf() into a single-byte variable using %s, which can overflow the stack memory. This c...
CVE-2025-60686
ToToLink routers (A720R V4.1.5cu.614_B20230630; LR1200GB V9.1.0u.6619_B20230130; NR1800X V9.1.0u.6681_B20230703) contain a local stack-based buffer overflow in infostat.cgi and cstecgi.cgi. Both binaries parse /proc/net/arp using sscanf() with the %s specifier into fixed-size stack buffers withou...
CVE-2025-60690
CVE-2025-60690 affects Linksys E1200 v2 routers (firmware
Siemens SIMATIC S7-1500 Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2017-9048)
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. At the end of the routine, the function may strcat two more...
Siemens SIMATIC S7-1500 Stack-based Buffer Overflow (CVE-2022-35260)
curl can be told to parse a .netrc file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline, curlwould first read past the end of the stack-based buffer, and if the readworks, write a zero byte beyond its boundary.This will in most cases cause ...
Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2023-39128)
GNU gdb GDB 13.0.50.20220805-git was discovered to contain a stack overflow via the function adadecode at /gdb/ada-lang.c. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...
Siemens SIMATIC and SCALANCE Uncontrolled Recursion (CVE-2024-8176)
A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expansion in XML documents. When parsing an XML document with deeply nested entity references, libexpat can be forced to recurse indefinitely, exhausting the stack space and causing a crash...
CVE-2021-4464 FIberHome AN5506-04-FA / HG6245D Routers Remote Stack Overflow
FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service 'webs' fails to enforce maximum lengths for Cookie header values. When a cookie longer than 511 bytes is processed, a stack buffer is overrun,...
Huawei EulerOS: Security Advisory for icu (EulerOS-SA-2025-2388)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : ncurses (EulerOS-SA-2025-2396)
According to the versions of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function...
EulerOS 2.0 SP12 : icu (EulerOS-SA-2025-2329)
According to the versions of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A stack buffer overflow was found in Internationl components for unicode ICU . While running the genrb binary, the 'subtag' struct overflowed at the...