CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7301 matches found

Cvelist•added 2019/07/12 3:57 a.m.•26 views

CVE-2019-13494

nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0.9 has a stack-based buffer overflow via a long variable string in a Map Objects text file...

7.8AI score0.02794EPSS

Exploits5References2

CVE•added 2019/07/11 7:40 p.m.•173 views

CVE-2019-0053

The CVE-2019-0053 entry concerns the inetutils Telnet client in Junos OS, where environment-variable handling is insufficiently validated, causing a stack-based buffer overflow. This vulnerability is local to the Telnet client used from the CLI or shell, with inbound Telnet services unaffected. A...

7.8CVSS7.7AI score0.00115EPSS

Exploits2References7Affected Software1

NVD•added 2019/07/10 5:15 p.m.•9 views

CVE-2019-13279

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains multiple stack-based buffer overflows when processing user input for the setup wizard, allowing an unauthenticated user to execute arbitrary code. The vulnerability can be exercised on the local intranet or remotely if remote...

9.8CVSS9.8AI score0.0445EPSS

Exploits1References1

CVE•added 2019/07/10 4:27 p.m.•63 views

CVE-2019-13279

TRENDnet TEW-827DRU devices running firmware up to and including 2.04B03 are affected by multiple stack-based buffer overflows in the setup wizard input processing. This vulnerability allows an unauthenticated attacker to execute arbitrary code and can be exploited from the local intranet or remo...

9.8CVSS9.6AI score0.0445EPSS

Exploits1References1Affected Software1

CVE•added 2019/07/10 4:19 p.m.•102 views

CVE-2019-13276

TRENDnet TEW-827DRU devices with firmware 2.04B03 or earlier are affected by a stack-based buffer overflow in the ssi binary. An unauthenticated attacker can cause arbitrary code execution by sending a sufficiently long query string via POST to valid cgi, txt, asp, or js files, potentially from a...

9.8CVSS9.6AI score0.03327EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/07/10 1:25 p.m.•14 views

CVE-2018-14496

Vivotek FD8136 devices allow remote memory corruption and remote code execution because of a stack-based buffer overflow, related to sprintf, vlocalbuff4326, and setgetparam.cgi. NOTE: The vendor has disputed this as a vulnerability and states that the issue does not cause a web server crash or...

10AI score0.04783EPSS

Exploits1References2

CVE•added 2019/07/10 1:25 p.m.•41 views

CVE-2018-14496

CVE-2018-14496 affects Vivotek FD8136 devices. The vulnerability is a stack-based buffer overflow in the web CGI endpoint “/set_getparam.cgi” related to the use of sprintf and a local buffer (vlocal_buff_4326), enabling remote memory corruption and remote code execution. Multiple sources corrobor...

9.8CVSS9.9AI score0.04783EPSS

Exploits1References2Affected Software1

UbuntuCve•added 2019/07/10 12:15 p.m.•31 views

CVE-2018-14550

An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function gettoken in pnm2png.c in pnm2png...

8.8CVSS7.1AI score0.01831EPSS

Exploits1References1

AlpineLinux•added 2019/07/10 12:0 a.m.•26 views

CVE-2018-14550

An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function gettoken in pnm2png.c in pnm2png...

8.8CVSS8.9AI score0.01831EPSS

Exploits1

NVD•added 2019/07/09 7:15 p.m.•9 views

CVE-2019-13280

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 contains a stack-based buffer overflow while returning an error message to the user about failure to resolve a hostname during a ping or traceroute attempt. This allows an authenticated user to execute arbitrary code. The exploit can b...

8.8CVSS9AI score0.01816EPSS

Exploits1References1

Prion•added 2019/07/09 7:15 p.m.•14 views

Stack overflow

6.5CVSS8.9AI score0.01816EPSS

Exploits1References1Affected Software1

OpenVAS•added 2019/07/09 12:0 a.m.•28 views

Debian: Security Advisory (DLA-1849-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.18163EPSS

Exploits1References3

Tenable Nessus•added 2019/07/09 12:0 a.m.•39 views

Debian DSA-4477-1 : zeromq3 - security update

Fang-Pen Lin discovered a stack-based buffer-overflow flaw in ZeroMQ, a lightweight messaging kernel library. A remote, unauthenticated client connecting to an application using the libzmq library, running with a socket listening with CURVE encryption/authentication enabled, can take advantage of...

9.8CVSS8AI score0.18163EPSS

Exploits1References5

Veracode•added 2019/07/08 3:4 a.m.•24 views

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS. The function WritePNMImage in coders/pnm.c leads to a stack-based buffer overflow while converting an image to PGM image...

7.8CVSS8.2AI score0.001EPSS

Exploits1References7Affected Software5