Lucene search
K

34202 matches found

CVE
CVE
added 2025/10/31 12:0 a.m.25 views

CVE-2025-63465

Totolink LR350 v9.3.5u.6369_B20220309 is affected by a stack overflow in the sub_422880 function’s handling of the ssid parameter, enabling a crafted request to cause a Denial of Service (DoS). Multiple sources (CNVD-2025-27567, RH:CVE-2025-63465, NVD/CVELIST) confirm the vulnerability and its Do...

7.5CVSS7AI score0.00376EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/31 12:0 a.m.1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: poppler (UTSA-2025-988623)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988623 advisory. Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata such as GTSPDFEVersion of a PDF...

2.9CVSS5.4AI score0.00124EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/31 12:0 a.m.4 views

TOTOLINK A7000R 安全漏洞

TOTOLINK A7000R is a wireless router from China's Gion Electronics TOTOLINK that supports WiFi7 technology for home or small business network environments. The TOTOLINK A7000R suffers from a stack buffer overflow vulnerability that originates from the ssid5g parameter in the urldecode function...

7.5CVSS7.1AI score0.00376EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/10/31 12:0 a.m.7 views

PT-2025-44657

Name of the Vulnerable Software and Affected Versions Totolink A7000R version 9.1.0u.6115 B20201022 Description The software contains a stack overflow issue through the ssid5g parameter within the urldecode function. A crafted request can lead to a Denial of Service DoS. Recommendations At the...

9CVSS6.7AI score0.00376EPSS
Exploits1References6
CVE
CVE
added 2025/10/31 12:0 a.m.18 views

CVE-2025-63461

The CVE-2025-63461 entry concerns Totolink A7000R v9.1.0u.6115_B20201022, with a stack overflow in the urldecode function triggered by the ssid5g parameter. A crafted request can cause a Denial of Service. Connected sources (CNVD, Red Hat, NVD, CNNVD, etc.) corroborate the stack overflow/DoS symp...

7.5CVSS7AI score0.00376EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/31 12:0 a.m.4 views

CVE-2025-63461

Totolink A7000R v9.1.0u.6115B20201022 was discovered to contain a stack overflow via the ssid5g parameter in the urldecode function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted request...

7AI score0.00376EPSS
Exploits1References1
OSV
OSV
added 2025/10/30 9:29 p.m.6 views

CLSA-2025-1761859779 libxml2: Fix of 2 CVEs

CVE-2024-56171: fix use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c - CVE-2025-24928: fix stack-based buffer overflow in xmlSnprintfElements in valid.c...

9.8CVSS7.4AI score0.0113EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/30 5:9 p.m.7 views

CVE-2025-64096 CryptoLib vulnerable to Stack Buffer Overflow in Crypto_Key_Update due to missing TLV length check

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to 1.4.2, there is a missing bounds check in CryptoKeyupdate...

8.8CVSS0.00464EPSS
Exploits1References1
CVE
CVE
added 2025/10/30 5:9 p.m.14 views

CVE-2025-64096

CryptoLib (NASA open source SDLS-EP implementation) before version 1.4.2 is affected by a stack-based buffer overflow in Crypto_Key_update() (crypto_key_mgmt.c). An attacker-controlled TLV length field (pdu_len) can drive the calculation of the number of keys beyond the static kblk[98] array, cau...

8.8CVSS8.8AI score0.00464EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/30 5:9 p.m.2 views

CVE-2025-64096 CryptoLib vulnerable to Stack Buffer Overflow in Crypto_Key_Update due to missing TLV length check

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to 1.4.2, there is a missing bounds check in CryptoKeyupdate...

8.8CVSS8.8AI score0.00464EPSS
Exploits1References1
OSV
OSV
added 2025/10/30 5:9 p.m.4 views

CVE-2025-64096 CryptoLib vulnerable to Stack Buffer Overflow in Crypto_Key_Update due to missing TLV length check

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to 1.4.2, there is a missing bounds check in CryptoKeyupdate...

8.8CVSS8.9AI score0.00464EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.5 views

PT-2025-44438

Name of the Vulnerable Software and Affected Versions CryptoLib versions prior to 1.4.2 Description CryptoLib utilizes the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A...

8.8CVSS9.2AI score0.00464EPSS
Exploits1References9
OSV
OSV
added 2025/10/29 8:15 p.m.2 views

CVE-2025-10925

GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS7.6AI score
Exploits0References2
AlpineLinux
AlpineLinux
added 2025/10/29 7:29 p.m.1 views

CVE-2025-10925

GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS7.6AI score0.02751EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/29 7:29 p.m.1 views

CVE-2025-10925 GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS7.2AI score0.02751EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/10/29 7:29 p.m.3 views

CVE-2025-10925

GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS7.9AI score0.02751EPSS
Exploits0
NVD
NVD
added 2025/10/29 2:15 p.m.4 views

CVE-2024-45162

A stack-based buffer overflow issue was discovered in the phddns client in Blu-Castle BCUM221E 1.0.0P220507 via the password field...

9.8CVSS0.00486EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/10/29 12:0 a.m.4 views

Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics ASDA-Soft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.2AI score0.00185EPSS
Exploits0References1
Redos
Redos
added 2025/10/29 12:0 a.m.8 views

ROS-20251029-01

Gstreamer multimedia framework vulnerability is related to a buffer overflow on the stack. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS8.2AI score0.00708EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.3 views

Siemens SIMATIC Devices Stack-based Buffer Overflow (CVE-2023-4273)

This vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file name. Since the file name characters are copied into a stac...

6.7CVSS6.8AI score0.00664EPSS
Exploits1References5
Rows per page
Query Builder