13291 matches found
Exploit for Out-of-bounds Write in Tenda Ac9_Firmware
CVE-2025-29384 Proof-of-Concept Exploit Overview This repo...
Progress Software Kemp LoadMaster mangle Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software Kemp LoadMaster. Authentication is not required to exploit this vulnerability. The specific flaw exists within the mangle executable. The issue results from the lack of proper...
CVE-2025-2370
A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...
CVE-2025-2369
A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been classified as critical. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument admpass leads to stack-based buffer overflow. It is possible to launch the atta...
CVE-2025-2370 TOTOLINK EX1800T cstecgi.cgi setWiFiExtenderConfig stack-based overflow
A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...
CVE-2025-2369 TOTOLINK EX1800T cstecgi.cgi setPasswordCfg stack-based overflow
A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been classified as critical. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument admpass leads to stack-based buffer overflow. It is possible to launch the atta...
Important: libxml2
Issue Overview: libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML...
RHEL 8 : libxml2 (RHSA-2025:2660)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:2660 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: Use-After-Free ...
X.Org Server XkbVModMaskText Stack-based Buffer Overflow Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the XkbVModMaskText...
Important: Red Hat Security Advisory: libxml2 security update
An update for libxml2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2
A flaw was found in libxml2. This vulnerability allows a stack-based buffer overflow via DTD validation of an untrusted document or untrusted DTD...
PT-2025-12495 · D Link · D-Link Dap-1620
Name of the Vulnerable Software and Affected Versions: D-Link DAP-1620 version 1.03 Description: A critical vulnerability has been found in the D-Link DAP-1620, affecting the mod graph auth uri handler function of the Authentication Handler component. This vulnerability leads to a stack-based...
CVE-2025-27168 Illustrator | Stack-based Buffer Overflow (CWE-121)
Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-27168 Illustrator | Stack-based Buffer Overflow (CWE-121)
Illustrator versions 29.2.1, 28.7.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-27168
CVE-2025-27168 corresponds to a stack-based buffer overflow in Adobe Illustrator versions 29.2.1, 28.7.4 and earlier that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction—victim must open a malicious file. Affected component: Illust...
PYSEC-2025-158
A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...
CVE-2025-2151 Open Asset Import Library Assimp File ParsingUtils.h GetNextLine stack-based overflow
A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...
CVE-2025-2151
CVE-2025-2151 affects Open Asset Import Library Assimp 5.4.3, specifically the GetNextLine function in ParsingUtils.h (File Handler). The vulnerability is a stack-based buffer overflow that can be triggered remotely, with exploitation disclosed publicly. Affected software may be exploitable in en...
Amazon Linux 2 : gcc10-binutils (ALAS-2025-2772)
The version of gcc10-binutils installed on the remote host is prior to 2.35.2-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2772 advisory. A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function...
Updated gpac packages fix security vulnerabilities
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2. CVE-2023-5520 Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV. CVE-2024-0321 Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.3-DEV. CVE-2024-0322...