13260 matches found
CVE-2025-3203
A vulnerability classified as problematic was found in Tenda W18E 16.01.0.11. Affected by this vulnerability is the function formSetAccountList of the file /goform/setModules. The manipulation of the argument Password leads to stack-based buffer overflow. The attack can be launched remotely. The...
CVE-2025-3203 Tenda W18E setModules formSetAccountList stack-based overflow
A vulnerability classified as problematic was found in Tenda W18E 16.01.0.11. Affected by this vulnerability is the function formSetAccountList of the file /goform/setModules. The manipulation of the argument Password leads to stack-based buffer overflow. The attack can be launched remotely. The...
CVE-2025-3203 Tenda W18E setModules formSetAccountList stack-based overflow
A vulnerability classified as problematic was found in Tenda W18E 16.01.0.11. Affected by this vulnerability is the function formSetAccountList of the file /goform/setModules. The manipulation of the argument Password leads to stack-based buffer overflow. The attack can be launched remotely. The...
CVE-2025-3203
CVE-2025-3203 concerns Tenda W18E firmware 16.01.0.11 where the Password argument in the formSetAccountList function (in /goform/setModules) can trigger a stack-based buffer overflow. The vulnerability can be exploited remotely and the public disclosure has occurred. Connected reports consistentl...
CVE-2025-3196
The CVE-2025-3196 issue affects Open Asset Import Library Assimp 5.4.3, specifically the Malformed File Handler in Assimp::MD2Importer::InternReadFile (MD2Loader.cpp). Exploitation leads to a stack-based buffer overflow, with a local attack vector. The vulnerability is publicly disclosed and an u...
CVE-2025-3196 Open Asset Import Library Assimp Malformed File MD2Loader.cpp InternReadFile stack-based overflow
A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. Affected is the function Assimp::MD2Importer::InternReadFile in the library code/AssetLib/MD2/MD2Loader.cpp of the component Malformed File Handler. The manipulation of the argument Name leads ...
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
Ivanti Connect Secure, Policy Secure, and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code execution...
Ivanti Connect Secure CVE-2025-22457 exploited in the wild
On Thursday, April 3, 2025, Ivanti disclosed a critical severity vulnerability affecting Ivanti Connect Secure, Pulse Connect Secure, Policy Secure, and ZTA Gateways. CVE-2025-22457 is a stack-based buffer overflow vulnerability that allows remote, unauthenticated attackers to execute code on the...
CVE-2025-3166 code-projects Product Management System Search Product Menu search_item stack-based overflow
A vulnerability classified as critical was found in code-projects Product Management System 1.0. This vulnerability affects the function searchitem of the component Search Product Menu. The manipulation of the argument target leads to stack-based buffer overflow. Local access is required to...
CVE-2025-3166 code-projects Product Management System Search Product Menu search_item stack-based overflow
A vulnerability classified as critical was found in code-projects Product Management System 1.0. This vulnerability affects the function searchitem of the component Search Product Menu. The manipulation of the argument target leads to stack-based buffer overflow. Local access is required to...
CVE-2025-3161 Tenda AC10 ShutdownSetAdd stack-based overflow
A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. This issue affects the function ShutdownSetAdd of the file /goform/ShutdownSetAdd. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2025-3161 Tenda AC10 ShutdownSetAdd stack-based overflow
A vulnerability was found in Tenda AC10 16.03.10.13 and classified as critical. This issue affects the function ShutdownSetAdd of the file /goform/ShutdownSetAdd. The manipulation of the argument list leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2025-3161
The CVE-2025-3161 issue affects Tenda AC10 (firmware 16.03.10.13) in the ShutdownSetAdd routine (/goform/ShutdownSetAdd). The vulnerability arises from improper handling of an argument list, leading to a stack-based buffer overflow. Impact is described as remote, with the potential to execute arb...
CVE-2024-54808
Netgear WNR854T 1.5.2 North America contains a stack-based buffer overflow vulnerability in the SetDefaultConnectionService function due to an unconstrained use of sscanf. The vulnerability allows for control of the program counter and can be utilized to achieve arbitrary code execution...
CVE-2024-54809
Netgear Inc WNR854T 1.5.2 North America contains a stack-based buffer overflow vulnerability in the parsestheader function due to use of a request header parameter in a strncpy where size is determined based on the input specified. By sending a specially crafted packet, an attacker can take contr...
EulerOS 2.0 SP13 : binutils (EulerOS-SA-2025-1329)
According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : https://www.gnu.org/software/binutils/ nm =2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: n...
CVE-2025-3007
A vulnerability was found in Novastar CX40 up to 2.44.0. It has been rated as critical. This issue affects the function getopt of the file /usr/nova/bin/netconfig of the component NetFilter Utility. The manipulation of the argument cmd/netmask/pipeout/nettask leads to stack-based buffer overflow...
CVE-2025-3007
CVE-2025-3007 affects Novastar CX40 (up to 2.44.0) in the NetFilter Utility, specifically the /usr/nova/bin/netconfig getopt function. The underlying issue is a stack-based buffer overflow caused by manipulation of arguments (cmd, netmask, pipeout, nettask). The advisory notes that the exploit ha...
CVE-2025-3007 Novastar CX40 NetFilter Utility netconfig getopt stack-based overflow
A vulnerability was found in Novastar CX40 up to 2.44.0. It has been rated as critical. This issue affects the function getopt of the file /usr/nova/bin/netconfig of the component NetFilter Utility. The manipulation of the argument cmd/netmask/pipeout/nettask leads to stack-based buffer overflow...
CVE-2025-3007 Novastar CX40 NetFilter Utility netconfig getopt stack-based overflow
A vulnerability was found in Novastar CX40 up to 2.44.0. It has been rated as critical. This issue affects the function getopt of the file /usr/nova/bin/netconfig of the component NetFilter Utility. The manipulation of the argument cmd/netmask/pipeout/nettask leads to stack-based buffer overflow...