RHEL 9 : orc (RHSA-2024:6184)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:6184 advisory. Orc is a library and set of tools for compiling and executing very simple programs that operate on arrays of data. The language is a generic assembly...

CVE-2024-45623

D-Link DAP-2310 Hardware A Firmware 1.16RC028 allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the ATP binary that handles PHP HTTP GET requests for the Apache HTTP Server httpd. NOTE: This vulnerability only affects products that are no longer supported by t...

CVE-2024-45623

CVE-2024-45623 affects D-Link DAP-2310 Hardware A Firmware 1.16RC028. A stack-based buffer overflow in the ATP binary that handles PHP HTTP GET requests for the Apache HTTP Server (httpd) allows remote code execution. Impact is high (remote, no user interaction; network access required) per the N...

ROS-20240902-17

A vulnerability in the orcparse.c file in the library for compiling and executing programs that work with GStreamer ORC data arrays is related to a stack-based buffer overflow. GStreamer ORC data arrays is related to a stack-based buffer overflow. Exploitation of the vulnerability could allow an...

CVE-2024-8231

A vulnerability classified as critical has been found in Tenda O6 1.0.0.72054. Affected is the function fromVirtualSet of the file /goform/setPortForward. The manipulation of the argument ip/localPort/publicPort/app leads to stack-based buffer overflow. It is possible to launch the attack remotel...

CVE-2024-8230

A vulnerability was found in Tenda O6 1.0.0.72054. It has been rated as critical. This issue affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument remark/type/time leads to stack-based buffer overflow. The attack may be initiated remotely...

CVE-2024-8229

A vulnerability was found in Tenda O6 1.0.0.72054. It has been declared as critical. This vulnerability affects the function frommacFilterModify of the file /goform/operateMacFilter. The manipulation of the argument mac leads to stack-based buffer overflow. The attack can be initiated remotely. T...

CVE-2024-8230

The CVE-2024-8230 entry concerns Tenda O6 firmware version 1.0.0.7(2054). The vulnerability lies in the fromSafeSetMacFilter function of /goform/setMacFilterList, where manipulating the arguments remark, type, or time can trigger a stack-based buffer overflow. Public exploitation is claimed, enab...

CVE-2024-8228

A vulnerability was found in Tenda O5 1.0.0.85017. It has been classified as critical. This affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument remark/type/time leads to stack-based buffer overflow. It is possible to initiate the attack...

CVE-2024-8226

A vulnerability has been found in Tenda O1 1.0.0.710648 and classified as critical. Affected by this vulnerability is the function formSetCfm of the file /goform/setcfm. The manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack can be launched remotely. The explo...

CVE-2024-8228 Tenda O5 setMacFilterList fromSafeSetMacFilter stack-based overflow

A vulnerability was found in Tenda O5 1.0.0.85017. It has been classified as critical. This affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument remark/type/time leads to stack-based buffer overflow. It is possible to initiate the attack...

CVE-2024-8228

CVE-2024-8228 affects Tenda O5, version 1.0.0.8(5017). The stack-based buffer overflow originates in the fromSafeSetMacFilter function within /goform/setMacFilterList, triggered by manipulating remark/type/time. It enables remote exploitation and has been disclosed publicly. Multiple sources conf...

CVE-2024-8227

CVE-2024-8227 affects Tenda O1 1.0.0.7(10648). The vulnerability lies in fromDhcpSetSer in /goform/DhcpSetSer, where manipulation of dhcpStartIp, dhcpEndIp, dhcpGw, dhcpMask, dhcpLeaseTime, dhcpDns1, and dhcpDns2 leads to a stack-based buffer overflow. It is exploitable remotely and the public ex...

CVE-2024-8226

CVE-2024-8226 affects Tenda O1 firmware v1.0.0.7(10648). The vulnerable component is the function formSetCfm in /goform/setcfm, where manipulation of the funcpara1 argument causes a stack-based buffer overflow. This can be exploited remotely, with public exploit details cited in multiple sources....

CVE-2024-8224

A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20. This issue affects the function formSetDebugCfg of the file /goform/setDebugCfg. The manipulation of the argument enable/level/module leads to stack-based buffer overflow. The attack may be initiated remotel...

CVE-2024-8224

CVE-2024-8224 affects Tenda G3 15.11.0.20. The vulnerability is a stack-based overflow in the function formSetDebugCfg of /goform/setDebugCfg caused by improper handling of the enable/level/module arguments. It can be exploited remotely and the exploit has been publicly disclosed. Multiple connec...

Moderate: Red Hat Security Advisory: orc:0.4.28 security update

An update for the orc:0.4.28 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 8 : orc:0.4.28 (RHSA-2024:5882)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5882 advisory. Orc is a library and set of tools for compiling and executing very simple programs that operate on arrays of data. The language is a generic assembly...

Stack-based Buffer Overflow

github.com/cosmwasm/wasmd is vulnerable to Stack-based Buffer Overflow. The vulnerability is due to improper memory handling, which can lead to stack overflow conditions.This can potentially crash the program or allow attackers to execute arbitrary code...

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...