RHEL 9 : icu (RHSA-2025:12333)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:12333 advisory. The International Components for Unicode ICU library provides robust and full-featured Unicode services. Security Fixes: icu: Stack buffer overflow ...

libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

RockyLinux 8 : jq (RLSA-2025:10618)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:10618 advisory. jq: jq has signed integer overflow in jv.c:jvparraywrite CVE-2024-23337 jq: AddressSanitizer: stack-buffer-overflow in jqfuzzexecute jvstringvfmt...

NETGEAR XR300 Stack Buffer Overflow Vulnerability (CNVD-2025-20497)

The NETGEAR XR300 is the entry-level Nighthawk Pro Gaming series wireless router from NETGEAR. The NETGEAR XR300 suffers from a stack buffer overflow vulnerability that stems from a stack buffer overflow in the HTTPD service when processing a POST request from the usbdevice.cgi endpoint, no detai...

RLSA-2025:4492 Moderate: qemu-kvm security update

Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fixes: QEMU: virtio-net: stack buffer overflow in virtionetflushtx CVE-2023-6693...

libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

Moderate: Red Hat Security Advisory: icu security update

An update for icu is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

...

RHEL 9 : icu (RHSA-2025:12083)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:12083 advisory. The International Components for Unicode ICU library provides robust and full-featured Unicode services. Security Fixes: icu: Stack buffer overflow ...

Moderate: icu security update

The International Components for Unicode ICU library provides robust and full-featured Unicode services. Security Fixes: icu: Stack buffer overflow in the SRBRoot::addTag function CVE-2025-5222 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and...

Tenda AC8V4 Buffer Overflow Vulnerability (CNVD-2025-17346)

The Tenda AC8V4 is a wireless router from Tenda China. Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow in the time parameter in /goform/saveParentControlInfo, no detailed vulnerability details are available at this time...

NewStart CGSL MAIN 7.02 : gstreamer1-plugins-base Multiple Vulnerabilities (NS-SA-2025-0175)

The remote NewStart CGSL host, running version MAIN 7.02, has gstreamer1-plugins-base packages installed that are affected by multiple vulnerabilities: - GStreamer is a library for constructing graphs of media-handling components. An OOB-Write has been detected in the function...

CBL Mariner 2.0 Security Update: luajit / sysbench (CVE-2024-25176)

The version of luajit / sysbench installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25176 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in...

SonicWall Secure Mobile Access < 10.2.2.1-90sv (SNWLID-2025-0012)

The version of SonicWall Secure Mobile Access installed on the remote host is prior to 10.2.2.1-90sv. It is, therefore, affected by multiple vulnerabilities as referenced in the SNWLID-2025-0012 advisory: - A Reflected cross-site scripting XSS vulnerability exists in the SMA100 series web...

Azure Linux 3.0 Security Update: luajit / sysbench (CVE-2024-25176)

The version of luajit / sysbench installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25176 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in...

Tenda AC8V4 安全漏洞

The Tenda AC8V4 is a wireless router from Tenda China. Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a stack buffer overflow in the time parameter in /goform/saveParentControlInfo, no detailed vulnerability details are available at this time...

PT-2025-31749

Name of the Vulnerable Software and Affected Versions NVIDIA vGPU software for Linux-style hypervisors affected versions not specified Description NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU Manager that could allow a malicious guest to cause a sta...

CVE-2025-40596

CVE-2025-40596 affects SonicWall SMA100 series Web Interface: a stack-based buffer overflow in the SMA100 web UI can be triggered remotely (no auth) and may cause DoS or, per the description, potentially enable code execution. The available sources confirm the vulnerability class and impact vecto...

Tenda AC500 Stack Buffer Overflow Vulnerability

Tenda AC500 is a wireless controller device from Tenda, designed for small and medium-sized businesses, supporting cross-VLAN management of wireless networks. Tenda AC500 has a stack buffer overflow vulnerability, which originates from the parameter radio2g1 in the file /goform/setWtpData fails t...