CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2024/01/18 10:15 p.m.•9 views

CVE-2023-43823

A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wTTitleLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution...

8.8CVSS9.2AI score0.00885EPSS

Prion•added 2024/01/18 10:15 p.m.•15 views

Stack overflow

A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesPrevValueLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote co...

6.8CVSS8.4AI score0.00946EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/01/18 9:16 p.m.•10 views

CVE-2023-43822 Delta Electronics Delta Industrial Automation DOPSoft DPS File wLogTitlesTimeLen Buffer Overflow Remote Code Execution

8.8CVSS9.2AI score0.00885EPSS

NVD•added 2024/01/18 12:15 a.m.•8 views

CVE-2023-6340

SonicWall Capture Client version 3.7.10, NetExtender client version 10.2.337 and earlier versions are installed with sfpmonitor.sys driver. The driver has been found to be vulnerable to Denial-of-Service DoS caused by Stack-based Buffer Overflow vulnerability...

5.5CVSS5.5AI score0.00066EPSS

Vulnrichment•added 2024/01/17 11:57 p.m.•10 views

CVE-2023-6340

6.9AI score0.00066EPSS

CVE•added 2024/01/17 11:57 p.m.•41 views

CVE-2023-6340

SonicWall reports that Capture Client 3.7.10 and NetExtender Windows client 10.2.337 and earlier install with the sfpmonitor.sys driver. The driver has a stack-based buffer overflow that can be triggered by crafted queries, leading to Denial of Service and potentially kernel memory overwrite with...

5.5CVSS5.5AI score0.00066EPSS

Exploits0References1Affected Software2

Cvelist•added 2024/01/17 11:57 p.m.•13 views

CVE-2023-6340

5.8AI score0.00066EPSS

Tenable Nessus•added 2024/01/17 12:0 a.m.•21 views

Hitachi Energy RTU500 Stack-Based Buffer Overflow (CVE-2022-2081)

A vulnerability exists in the HCI Modbus TCP function included in the product versions listed above. If the HCI Modbus TCP is enabled and configured, an attacker could exploit the vulnerability by sending a specially crafted message to the RTU500 in a high rate, causing the targeted RTU500 CMU to...

7.5CVSS7.3AI score0.00155EPSS

Prion•added 2024/01/16 4:15 p.m.•21 views

Stack overflow

A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619B20230130. Affected is the function UploadCustomModule of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument File leads to stack-based buffer overflow. It is possible to launch the attack remotely...

9CVSS7.3AI score0.00412EPSS

CVE•added 2024/01/16 3:31 p.m.•45 views

CVE-2024-0577

Totolink LR1200GB, version 9.1.0u.6619_B20230130, contains a stack-based buffer overflow in the setLanguageCfg function (/lang parameter) in /cgi-bin/cstecgi.cgi. Exploitation is possible remotely and publicly disclosed; impact is arbitrary code execution or a denial of service. CVE-2024-0577 is ...

9.8CVSS9.5AI score0.00379EPSS

CVE•added 2024/01/16 3:31 p.m.•161 views

CVE-2024-0576

Totolink LR1200GB (firmware 9.1.0u.6619_B20230130) is affected by a stack-based buffer overflow in the setIpPortFilterRules function of /cgi-bin/cstecgi.cgi. The vulnerability stems from improper validation of the sPort argument, allowing remote exploitation. The advisory notes the vulnerability ...

9.8CVSS9.5AI score0.00621EPSS

NVD•added 2024/01/16 3:15 p.m.•19 views

CVE-2024-0575

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130. It has been classified as critical. This affects the function setTracerouteCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument command leads to stack-based buffer overflow. It is possible to initiate the attac...

9.8CVSS9.3AI score0.00398EPSS

NVD•added 2024/01/16 3:15 p.m.•8 views

CVE-2024-0574

A vulnerability was found in Totolink LR1200GB 9.1.0u.6619B20230130 and classified as critical. Affected by this issue is the function setParentalRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument sTime leads to stack-based buffer overflow. The attack may be launched remotel...

9.8CVSS9.2AI score0.00433EPSS

NVD•added 2024/01/16 3:15 p.m.•15 views

CVE-2024-0573

A vulnerability has been found in Totolink LR1200GB 9.1.0u.6619B20230130 and classified as critical. Affected by this vulnerability is the function setDiagnosisCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be launche...

9.8CVSS9.2AI score0.0044EPSS

Prion•added 2024/01/16 3:15 p.m.•16 views

Stack overflow

9CVSS7.2AI score0.0044EPSS

Prion•added 2024/01/16 3:15 p.m.•19 views

Stack overflow

9CVSS7.2AI score0.00433EPSS

Prion•added 2024/01/16 3:15 p.m.•22 views

Stack overflow

9CVSS7.3AI score0.00398EPSS

CVE•added 2024/01/16 3:0 p.m.•147 views

CVE-2024-0575

CVE-2024-0575 affects Totolink LR1200GB (firmware 9.1.0u.6619_B20230130). The vulnerability is in the setTracerouteCfg function of /cgi-bin/cstecgi.cgi, where manipulating the command argument causes a stack-based buffer overflow. It can be exploited remotely over the network (attack vector: NETW...

9.8CVSS9.6AI score0.00398EPSS

CVE•added 2024/01/16 3:0 p.m.•155 views

CVE-2024-0574

The CVE-2024-0574 entry affects Totolink LR1200GB (firmware 9.1.0u.6619_B20230130). The vulnerability resides in the setParentalRules function of /cgi-bin/cstecgi.cgi, where manipulating the sTime argument causes a stack-based buffer overflow. The issue is exploitable remotely and has been public...

9.8CVSS9.4AI score0.00433EPSS