CVE-2023-31470

SmartDNS through 41 before 56d0332 allows an out-of-bounds write because of a stack-based buffer overflow in the dnsencodedomain function in the dns.c file, via a crafted DNS request...

Out-of-bounds Write

connman is vulnerable to Out-of-bounds Write. This vulnerability allows a network-adjacent attacker to utilize 'client.c' within 'gdhcp' to carry out a stack based buffer overflow or denial of service which terminates the connman process...

CVE-2023-31470

SmartDNS through 41 before 56d0332 allows an out-of-bounds write because of a stack-based buffer overflow in the dnsencodedomain function in the dns.c file, via a crafted DNS request...

Adobe After Effects < 18.4.5 / 22.0 < 22.2.1 Arbitrary Code Execution (APSB22-17)

The version of Adobe After Effects installed on the remote host is prior to 18.4.5, or 22.x prior to 22.2.1. It is, therefore, affected by multiple stack-based buffer overflow flaws which could lead to arbitrary code execution in the context of the current user. Note that Nessus has not tested fo...

EulerOS Virtualization 2.9.1 : vim (EulerOS-SA-2023-1650)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577. CVE-2022-3296 - Use After Free in GitHub repository...

Debian dla-3397 : connman - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3397 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3397-1 [email protected] https://www.debian.org/lts/security/...

CVE-2023-30373

In Tenda AC15 V15.03.05.19, the function "xianpppoeuser" contains a stack-based buffer overflow vulnerability...

CVE-2023-30378

In Tenda AC15 V15.03.05.19, the function "sub8EE8" contains a stack-based buffer overflow vulnerability...

Stack overflow

In Tenda AC15 V15.03.05.19, the function "henanpppoeuser" contains a stack-based buffer overflow vulnerability...

Stack overflow

In Tenda AC15 V15.03.05.19, The function "xkjsver32" contains a stack-based buffer overflow vulnerability...

Stack overflow

In Tenda AC15 V15.03.05.19, the function "xianpppoeuser" contains a stack-based buffer overflow vulnerability...

CVE-2023-30376

CVE-2023-30376 concerns a stack-based buffer overflow in the function henan_pppoe_user of the router firmware for Tenda AC15 V15.03.05.19 . The vulnerability is characterized as a network-exploitable issue with a base score of 9.8 (CRITICAL) under CVSS 3.1 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). T...

CVE-2023-30370

CVE-2023-30370 affects the Tenda AC15 router specifically version V15.03.05.19. The vulnerability is a stack-based overflow in the GetValue function, which can lead to complete compromise of affected devices. The CVE’s published metrics indicate a 9.8/10 CRITICAL base score with network access re...

CVE-2023-30378

In Tenda AC15 V15.03.05.19, the function "sub8EE8" contains a stack-based buffer overflow vulnerability...

CVE-2023-30371

In Tenda AC15 V15.03.05.19, the function "subED14" contains a stack-based buffer overflow vulnerability...

CVE-2023-30371

CVE-2023-30371 affects Tenda AC15 firmware V15.03.05.19, where the vulnerable function sub_ED14 has a stack-based buffer overflow. Technical details across sources identify the affected device and function but do not provide a patch version or confirmed remediation. CVSS 3.1 indicates high impact...

CVE-2023-30375

The CVE-2023-30375 entry affects Tenda AC15 router, specifically version V15.03.05.19, where the stack-based buffer overflow exists in the getIfIp function. The issue is triggered remotely over the network (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) with a base score of 9.8 (CRITICAL). Docum...

(Pwn2Own) Oracle VirtualBox TPM MMIO Handling Stack-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the handlin...

Debian: Security Advisory (DLA-3397-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-30372

CVE-2023-30372 affects Tenda AC15 V15.03.05.19: the stack-based overflow in the xkjs_ver32 function. CVSS v3.1 base score 9.8 (Critical) with NETWORK attack vector, no user interaction required; impacts to confidentiality, integrity, and availability are HIGH. The vulnerability stems from a stack...