Lucene search
K

34199 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990066)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990066 advisory. In the Linux kernel, the following vulnerability has been resolved: net/dpaa2: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

7.3CVSS6.2AI score0.00223EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989201)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989201 advisory. In the Linux kernel, the following vulnerability has been resolved: i2c: mlxbf: prevent stack overflow in mlxbfi2csmbusstarttransaction memcpy is called in a loop...

7.8CVSS6.2AI score0.00253EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989257)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989257 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Fix type in mint to avoid stack OOB Change mint to use type u32 instead of type...

6.6CVSS5.9AI score0.00238EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990218)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990218 advisory. In the Linux kernel, the following vulnerability has been resolved: net/dpaa2: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

7.3CVSS6.2AI score0.00223EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.7 views

PT-2025-48205

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 7.0.13 Suricata versions prior to 8.0.2 Description Suricata is a network IDS, IPS and NSM engine. Versions of Suricata prior to 7.0.13 and 8.0.2 are susceptible to a stack overflow that can cause the software to cra...

7.8CVSS6.8AI score0.01172EPSS
Exploits3References73
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988682)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988682 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: improve size validations for received domain records The function tipcmonrcv allows a node ...

9CVSS5.9AI score0.67994EPSS
Exploits2References4
NVD
NVD
added 2025/11/04 10:16 p.m.10 views

CVE-2025-62507

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

8.8CVSS0.06431EPSS
Exploits2References3
NVD
NVD
added 2025/11/04 10:16 p.m.7 views

CVE-2025-54526

Fuji Electric Monitouch V-SFT-6 is vulnerable to a stack-based buffer overflow while processing a specially crafted project file, which may allow an attacker to execute arbitrary code...

8.4CVSS0.00155EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 10:16 p.m.6 views

CVE-2025-54526

Fuji Electric Monitouch V-SFT-6 is vulnerable to a stack-based buffer overflow while processing a specially crafted project file, which may allow an attacker to execute arbitrary code...

8.4CVSS6.3AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 10:16 p.m.4 views

UBUNTU-CVE-2025-62507

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

8.8CVSS7.5AI score0.06431EPSS
Exploits2References5
CVE
CVE
added 2025/11/04 9:37 p.m.21 views

CVE-2025-54526

CVE-2025-54526 concerns Fuji Electric Monitouch V-SFT-6/V-SFT with a stack-based buffer overflow in parsing crafted project/V7 files, leading to remote code execution . ZDI advisories describe the flaw as a lack of proper validation of the length of user-supplied data before copying it into a fix...

8.4CVSS7.3AI score0.00155EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/11/04 9:24 p.m.18 views

CVE-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

7.7CVSS0.06431EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/11/04 9:24 p.m.6 views

CVE-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

7.7CVSS7.8AI score0.06431EPSS
Exploits2References3
CVE
CVE
added 2025/11/04 9:24 p.m.55 views

CVE-2025-62507

CVE-2025-62507 affects Redis Open Source. In Redis versions 8.2.0 and above, the XACKDEL command can trigger a stack-based buffer overflow, potentially enabling remote code execution. The issue is fixed in Redis 8.2.3; remediation guidance includes upgrading to 8.2.3 or applying ACLs to restrict ...

8.8CVSS7.8AI score0.06431EPSS
Exploits2References3Affected Software1
Debian CVE
Debian CVE
added 2025/11/04 9:24 p.m.9 views

CVE-2025-62507

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

8.8CVSS7.9AI score0.06431EPSS
Exploits2
OSV
OSV
added 2025/11/04 9:24 p.m.5 views

CVE-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

7.7CVSS8.2AI score0.06431EPSS
Exploits2References5
ICS
ICS
added 2025/11/04 7:0 a.m.5 views

Fuji Electric Monitouch V-SFT-6 (Update A)

RISK EVALUATION Successful exploitation of these vulnerabilities could crash the accessed device; a buffer overflow condition may allow remote code execution. 2. RECOMMENDED PRACTICES CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive...

8.4CVSS8.1AI score0.00219EPSS
Exploits0References10
CVE
CVE
added 2025/11/04 3:19 a.m.12 views

CVE-2025-47360

CVE-2025-47360 affects an Automotive Software platform based on QNX. The issue is memory corruption (described as a stack-based buffer overflow) occurring while processing client messages during device management, with local attack vector and high impact on confidentiality, integrity, and availab...

7.8CVSS6.7AI score0.00074EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/11/04 12:6 a.m.4 views

OSV-2025-876 Stack-buffer-overflow in snmp_input

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=457106694 Crash type: Stack-buffer-overflow READ 8 Crash state: snmpinput snmpparsetrapfuzzer.c...

7AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.8 views

PT-2025-44927

Name of the Vulnerable Software and Affected Versions Automotive Software platform based on QNX affected versions not specified Description A memory corruption issue exists when processing client messages during device management. This is a stack-based buffer overflow. Recommendations At the...

7.8CVSS7AI score0.00074EPSS
Exploits0References5
Rows per page
Query Builder