CVE-2022-48554

File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...

CVE-2023-38668

Stack-based buffer over-read in disasm in nasm 2.16 allows attackers to cause a denial of service crash...

PT-2023-26541 · Nasm +1 · Nasm +1

Name of the Vulnerable Software and Affected Versions: nasm version 2.16 Description: The issue is a stack-based buffer over-read in the disasm component, which allows attackers to cause a denial of service, resulting in a crash. Recommendations: For nasm version 2.16, at the moment, there is no...

CVE-2023-38668

Stack-based buffer over-read in disasm in nasm 2.16 allows attackers to cause a denial of service crash...

CVE-2022-48554

File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...

CVE-2023-38667

CVE-2023-38667 : The NASM NASM disassembly component has a stack-based buffer over-read in the disasm path affecting NASM version 2.16 (including 2.16 RCs), enabling denial of service when processing crafted input. Multiple vendors/distributions (Red Hat, OSV, NVD mirrors) corroborate the issue; ...

Ivanti Avalanche < 6.4.1 Multiple Vulnerabilities

Binary data ivantiavalanche641.nbin...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : poppler (SUSE-SU-2023:3292-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3292-1 advisory. - In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in...

Stack overflow

TOTOLINK T10v2 5.9c.5061B20200511 has a stack-based buffer overflow in setWiFiWpsConfig in /lib/cstemodules/wps.so. Attackers can send crafted data in an MQTT packet, via the pin parameter, to control the return address and execute code...

Hitachi Energy RTU500 series

1. EXECUTIVE SUMMARY ​CVSS v3 7.5 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Hitachi Energy ​Equipment: RTU500 series ​Vulnerabilities: Stack-based Buffer Overflow 2. RISK EVALUATION ​Successful exploitation of these vulnerabilities could cause a buffer overflow and reboot of...

CVE-2023-40041

TOTOLINK T10v2 5.9c.5061B20200511 has a stack-based buffer overflow in setWiFiWpsConfig in /lib/cstemodules/wps.so. Attackers can send crafted data in an MQTT packet, via the pin parameter, to control the return address and execute code...

CVE-2023-0426

ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vulnerabilities in the product versions under maintenance. An attacker who successfully exploited one or more of these vulnerabilities could cause the product to stop or make th...

CVE-2023-0426

CVE-2023-0426 affects ABB Freelance controllers AC 700F and AC 900F, with a stack-based buffer overflow as the root cause. Affected ranges include AC 700F (versions 9.0.0 to 9.2 SP2 and various Freelance releases up to 2019 SP1 FP1) and AC 900F (through Freelance 2013SP1, 2016, 2019 SP1, and SP1 ...

CVE-2023-33375

Connected IO v2.1.0 and prior has a stack-based buffer overflow vulnerability in its communication protocol, enabling attackers to take control over devices...

CVE-2023-33375

Connected IO v2.1.0 and prior has a stack-based buffer overflow vulnerability in its communication protocol, enabling attackers to take control over devices...

CVE-2023-33375

CVE-2023-33375 affects Connected IO ER2000 edge routers (v2.1.0 and earlier). The vulnerability is a stack-based buffer overflow in the device’s communication protocol that enables an attacker to take control of the device. Documented impact is high (CVE score 9.8; Confidentiality/Integrity/Avail...

Moxa EDR-G902 and EDR-G903 Series Routers Stack-Based Buffer Overflow (CVE-2020-14511)

Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers versions prior to 5.4. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

Moxa AWK-3131A Series Industrial AP/Bridge/Client Stack-Based Buffer Overflow (CVE-2019-5153)

An exploitable remote code execution vulnerability exists in the iwwebs configuration parsing functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted user name entry can cause an overflow of an error message buffer, resulting in remote code execution. An attacker can send...

Security Bulletin: IBM PowerVM Novalink is vulnerable because GraphQL Java is vulnerable to a denial of service, caused by a stack-based buffer overflow. (CVE-2023-28867)

Summary IBM PowerVM Novalink is vulnerable because GraphQL Java is vulnerable to a denial of service, caused by a stack-based buffer overflow. By sending a specially crafted GraphQL query, a remote attacker could exploit this vulnerability to cause a stack consumption. Vulnerability Details...

RHEL 9 : libeconf (RHSA-2023:4347)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:4347 advisory. Libeconf is a highly flexible and configurable library to parse and manage key=value configuration files. It reads configuration file snippe...