CVE-2023-41711

SonicOS post-authentication Stack-Based Buffer Overflow Vulnerability in the sonicwall.exp, prefs.exp URL endpoints lead to a firewall crash...

CVE-2023-39280

SonicOS p ost-authentication Stack-Based Buffer Overflow vulnerability in the ssoStats-s.xml, ssoStats-s.wri URL endpoints leads to a firewall crash...

CVE-2023-39279

CVE-2023-39279 affects SonicOS, with a post-authentication Stack-Based Buffer Overflow in the getPacketReplayData.json endpoint that leads to a firewall crash. The Nessus/SonicWall PSIRT entries consolidate multiple related CVEs but this item specifically targets getPacketReplayData.json. Affecte...

CVE-2023-39278

SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash...

CVE-2023-39278

CVE-2023-39278 is a SonicOS vulnerability in which a post-authentication user assertion failure in main.cgi leads to a Stack-Based Buffer Overflow and a firewall crash. The connected sources corroborate that SonicOS Management Web Interface and SSLVPN portal are affected by multiple related post-...

CVE-2023-39277

CVE-2023-39277 is a SonicWall SonicOS post-authentication stack-based buffer overflow affecting the sonicflow.csv and appflowsessions.csv endpoints, which can cause a firewall crash. The Nessus/NVD entries describe it as one of multiple stack-based overflow issues in SonicOS management web interf...

SonicOS affected by multiple vulnerabilities

The SonicOS Management web interface and SSLVPN portal have been impacted by several vulnerabilities, which are listed below. SonicWall strongly advises organizations using earlier versions of SonicOS firmware to upgrade to the latest firmware releases.Note: It's important to note that the...

PT-2023-26861 · Sonicos · Sonicos

Name of the Vulnerable Software and Affected Versions: SonicOS affected versions not specified Description: The issue is related to a post-authentication user assertion failure in SonicOS, leading to a Stack-Based Buffer Overflow vulnerability. This vulnerability can be exploited via the main.cgi...

PT-2023-26862 · Sonicos · Sonicos

Name of the Vulnerable Software and Affected Versions: SonicOS affected versions not specified Description: The issue is a post-authentication Stack-Based Buffer Overflow vulnerability in the "getPacketReplayData.json" URL endpoint, which can cause a firewall crash. Recommendations: At the moment...

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : MediaInfoLib vulnerabilities (USN-5237-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5237-1 advisory. It was discovered that MediaInfoLib incorrectly handled certain specially crafted files. An attacker could possibly use this issu...

Stack overflow

A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos OS allows a low privileged attacker to execute a specific CLI commands leading to Denial of Service. Repeated actions by the attacker will create a sustained Denial of Service DoS condition. This issue affect...

Stack overflow

A Stack-based Buffer Overflow vulnerability in the CLI command of Juniper Networks Junos OS allows a low privileged attacker to execute a specific CLI commands leading to Denial of Service. Repeated actions by the attacker will create a sustained Denial of Service DoS condition. This issue affect...

CVE-2023-44176

CVE-2023-44176 is a stack-based buffer overflow in the CLI command processing of Juniper Networks Junos OS. The vulnerability allows a low-privileged attacker to execute specific CLI commands, triggering a Denial of Service with repeated actions potentially sustaining it. Affected Junos OS versio...

Weintek cMT3000 HMI Web CGI

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Weintek Equipment : cMT3000 CMI Web CGI Vulnerabilities : Stack-based Buffer Overflow, OS Command Injection 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

Santesoft Sante DICOM Viewer Pro

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Santesoft Equipment : Sante DICOM Viewer Pro Vulnerabilities : Out-of-bounds Write, Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to...

CVE-2023-34365

A stack-based buffer overflow vulnerability exists in the libutils.so nvramrestore functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to a buffer overflow. An attacker can send a network request to trigger this vulnerability...

Stack overflow

A stack-based buffer overflow vulnerability exists in the httpd dowds functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to stack-based buffer overflow. An attacker can send a network request to trigger this vulnerability...

CVE-2023-34365

A stack-based buffer overflow vulnerability exists in the libutils.so nvramrestore functionality of Yifan YF325 v1.020221108. A specially crafted network request can lead to a buffer overflow. An attacker can send a network request to trigger this vulnerability...

CVE-2023-34365

Affected software: Yifan YF325 router (v1.0_20221108). Vulnerability: stack-based buffer overflow in libutils.so nvram_restore parsing. The nvram upload file is parsed in a loop reading key length (up to 255) into a 128-byte buffer, causing a stack overflow. This can be triggered by a specially c...

CVE-2023-34346

CVE-2023-34346 concerns a stack-based buffer overflow in the Yifan YF325 router. Talos reports the vulnerability exists in the httpd gwcfg.cgi get endpoint, where the code reads request data using Content-Length into a fixed-size buffer without proper bounds checking, allowing a specially crafted...