CVE-2025-1594 FFmpeg AAC Encoder aacenc_tns.c ff_aac_search_for_tns stack-based overflow

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ffaacsearchfortns of the file libavcodec/aacenctns.c of the component AAC Encoder. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The...

CVE-2025-1539

A vulnerability, which was classified as critical, has been found in D-Link DAP-1320 1.00. Affected by this issue is the function replacespecialchar of the file /storagein.pd-XXXXXX. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been...

CVE-2025-1539

A vulnerability, which was classified as critical, has been found in D-Link DAP-1320 1.00. Affected by this issue is the function replacespecialchar of the file /storagein.pd-XXXXXX. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been...

CVE-2025-1539

CVE-2025-1539 affects D-Link DAP-1320 (firmware 1.00). The vulnerability lies in the function replace_special_char in the file /storagein.pd-XXXXXX, causing a stack-based buffer overflow. Exploitation appears network-based and remote, with reports indicating public disclosure. Affected devices ar...

CVE-2025-25663

CVE-2025-25663 affects Tenda AC8V4 V16.03.34.06. The vulnerability is in the function SUB_0046AC38 of /goform/WifiExtraSet, where manipulating the argument wpapsk_crypto can cause a stack-based buffer overflow. The issue is described with potential for severe impact (as indicated by multiple sour...

CVE-2025-24928

A flaw was found in libxml2. This vulnerability allows a stack-based buffer overflow via DTD validation of an untrusted document or untrusted DTD...

libxml2 -- Stack-based Buffer Overflow

[email protected] reports: libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

CVE-2025-1366

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this issue is the function strcpy of the component VirusPopUp. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been...

CVE-2025-1366

CVE-2025-1366 affects MicroWord eScan Antivirus 7.0.32 (Linux). The vulnerability is in the VirusPopUp component’s strcpy function, causing a stack-based buffer overflow . Exploitation requires local access; the exploit has been publicly disclosed and the vendor did not respond to disclosures. A ...

CVE-2025-1364

A vulnerability has been found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this vulnerability is the function passPrompt of the component USB Protection Service. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on...

CVE-2025-25745

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetQuickVPNSettings module...

CVE-2025-25746

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetWanSettings module...

CVE-2024-34943

Tenda FH1206 V1.2.0.88155EN was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting...

CVE-2024-36729

TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action wizardipv6 with a sufficiently long reboottype key...

CVE-2025-25740

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the PSK parameter in the SetQuickVPNSettings module...

MGASA-2025-0063 Updated ofono packages fix security vulnerabilities

Sms decoder stack-based buffer overflow remote code execution vulnerability within the decodedeliver function. CVE-2023-2794 Sms decoder stack-based buffer overflow remote code execution vulnerability within the decodestatusreport function. CVE-2023-4232 Sms decoder stack-based buffer overflow...

CVE-2025-22467

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6 allows a remote authenticated attacker to achieve remote code execution...

CVE-2025-1187

A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a requirement...

CVE-2025-1187

CVE-2025-1187 affects the Code-Projects Police FIR Record Management System 1.0, specifically the Delete Record Handler. The vulnerability is a stack-based overflow exploitable via a local attack, with public disclosure of the exploit. Public sources in the connected documents confirm the impact ...

CVE-2025-25746

D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetWanSettings module...