CVE-2022-47389

CVE-2022-47389 is a stack-based out-of-bounds write vulnerability in the CMPTraceMgr component of CODESYS V3, exploitable after authentication and capable of causing DoS, memory overwriting, or remote code execution across multiple products/versions. Connected sources corroborate that this family...

CVE-2022-47387 CODESYS: Multiple products prone to stack based out-of-bounds write

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

CVE-2022-47382 CODESYS: Multiple products prone to stack based out-of-bounds write

An authenticated remote attacker may use a stack based out-of-bounds write vulnerability in the CmpTraceMgr Component of multiple CODESYS products in multiple versions to write data into the stack which can lead to a denial-of-service condition, memory overwriting, or remote code execution...

CVE-2022-47380

CVE-2022-47380 describes a stack-based out-of-bounds write in CMPapp (and related CMP components) within CODESYS V3 across multiple versions. After authentication, crafted requests can write to stack memory, enabling denial-of-service, memory overwriting, or remote code execution. Connected sourc...

CVE-2023-30372

In Tenda AC15 V15.03.05.19, The function "xkjsver32" contains a stack-based buffer overflow vulnerability...

CVE-2023-30378

In Tenda AC15 V15.03.05.19, the function "sub8EE8" contains a stack-based buffer overflow vulnerability...

PT-2023-4172 · Schneider Electric +1 · Schneider Electric +1

Name of the Vulnerable Software and Affected Versions: CODESYS products affected versions not specified Schneider Electric affected versions not specified Description: The issue is related to a stack-based out-of-bounds write vulnerability in the CmpTraceMgr component. This vulnerability can be...

FortiWeb - Buffer overflow in execute backup-local command

A stack-based buffer overflow vulnerability CWE-121 in FortiWeb may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI execute backup-local rename and execute backup-local show operations...

PT-2023-5761 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation versions prior to V2201.0006 Description: A stack-based buffer overflow vulnerability has been identified in the affected application while parsing specially crafted SPP files. This issue allows an attacker to...

Stack overflow

Dell BIOS versions contain a stack-based buffer overflow vulnerability. A local attacker could exploit this vulnerability by sending malicious input via SMI to bypass security checks resulting in arbitrary code execution in SMM...

MediaTek 芯片缓冲区错误漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company MediaTek. A security vulnerability exists in the MediaTek chips, which stems from a stack-based buffer overflow that may result in out-of-bounds writes, and can be exploited by an attacker to cause an escalation of local...

Denial Of Service (DoS)

Red Hat Product Security has rated this issue as having Moderate security impact and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 6 and 7, hence, marked as Out-of-Support-Scope. For additional information, refer to the Issue Severity...

CVE-2020-16234

In PLC WinProladder Version 3.28 and prior, a stack-based buffer overflow vulnerability can be exploited when a valid user opens a specially crafted file, which may allow an attacker to remotely execute arbitrary code...

Buffer Overflow

sox:eoan is vulnerable to buffer overflow. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow...

Stack overflow

A stack-based buffer overflow in DMitry Deepmagic Information Gathering Tool 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nicformatbuff...

CVE-2019-13455

In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the alert acknowledgment CGI tool because of expansion in acknowledge.c...

Stack overflow

Genann through 2018-07-08 has a stack-based buffer over-read in genanntrain in genann.c...

CVE-2018-13866

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5Faddrdecodelen in H5Fint.c...

CVE-2018-12931

ntfsattrfind in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service kernel oops or panic or possibly have unspecified other impact via a crafted ntfs filesystem...

Security Bulletin: GNU C library (glibc) vulnerability affects IBM MobileFirst Quality Assurance (CVE-2015-7547)

Summary A GNU C library glibc stack-based buffer overflow in getaddrinfo vulnerability affects IBM MobileFirst Quality Assurance. Vulnerability Details CVEID: CVE-2015-7547 DESCRIPTION: GNU C Library glibc is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the...