CVE-2025-6021 Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

CVE-2025-6021 Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

SUSE CVE-2025-47806

In GStreamer through 1.26.1, the subparse plugin's parsesubriptime function may write data past the bounds of a stack buffer, leading to a crash...

CVE-2025-5969

A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN00425fd8 of the file /biurlgrou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched...

D-Link DIR-632 安全漏洞

D-Link DIR-632 is a wireless router for small business and SOHO users, supporting IEEE 802.11n and IEEE 802.11g wireless standards, with a maximum theoretical transfer rate of 300Mbps and equipped with eight 10/100Mbps LAN ports. A stack buffer overflow vulnerability exists in the D-Link DIR-632...

NETGEAR EX3700 安全漏洞

The NETGEAR EX3700 is a dual-band wireless accessor with a maximum transmission rate of 750Mbps. The NETGEAR EX3700 suffers from a stack buffer overflow vulnerability that stems from the lack of proper validation of user-supplied data in the function sub41619C in file/mtd, which can be exploited ...

CVE-2025-5863 Tenda AC5 SetRebootTimer formSetRebootTimer stack-based overflow

A vulnerability was found in Tenda AC5 15.03.06.47. It has been classified as critical. Affected is the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to launch the attack remotely. T...

NewStart CGSL MAIN 7.02 : gstreamer1-plugins-bad-free Vulnerability (NS-SA-2025-0083)

The remote NewStart CGSL host, running version MAIN 7.02, has gstreamer1-plugins-bad-free packages installed that are affected by a vulnerability: - GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...

CVE-2025-5799

CVE-2025-5799 affects Tenda AC8 16.03.34.09. The vulnerable component is the function fromSetWirelessRepeat in the file /goform/WifiExtraSet, where manipulating the argument wpapsk_crypto leads to a stack-based buffer overflow. Attacks can be initiated remotely over the network, and multiple sour...

Tenda CH22 Stack Buffer Overflow Vulnerability

The Tenda CH22 is an enterprise-grade wireless router for small to medium-sized businesses or home office environments. It supports single-band 2.4GHz wireless networks with a maximum transmission rate of up to 450Mbps. A stack buffer overflow vulnerability exists in the Tenda CH22. The...

D-Link DIR-816 Router Stack Buffer Overflow Vulnerability

The D-Link DIR-816 is a wireless router for homes and small offices SOHO that supports dual-band 2.4GHz and 5GHz wireless networking. A stack buffer overflow vulnerability exists in the D-Link DIR-816. The vulnerability stems from the incorrect operation of the parameter dipaddress/sipaddress in...

CVE-2025-5630

A vulnerability has been found in D-Link DIR-816 1.10CNB05 and classified as critical. This vulnerability affects unknown code of the file /goform/form2lansetup.cgi. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has bee...

RHEL 10 : corosync (RHSA-2025:7478)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:7478 advisory. The corosync packages provide the Corosync Cluster Engine and C APIs for Red Hat Enterprise Linux cluster software. Security Fixes: corosync: Stack...

CVE-2025-5572 D-Link DCS-932L setSystemEmail stack-based overflow

A vulnerability was found in D-Link DCS-932L 2.18.01. It has been declared as critical. Affected by this vulnerability is the function setSystemEmail of the file /setSystemEmail. The manipulation of the argument EmailSMTPPortNumber leads to stack-based buffer overflow. The attack can be launched...

D-Link DIR-816 安全漏洞

The D-Link DIR-816 is a wireless router for homes and small offices SOHO that supports dual-band 2.4GHz and 5GHz wireless networking. A stack buffer overflow vulnerability exists in the D-Link DIR-816. The vulnerability stems from the incorrect operation of the parameter dipaddress/sipaddress in...

Tenda CH22 安全漏洞

The Tenda CH22 is an enterprise-grade wireless router for small to medium-sized businesses or home office environments. It supports single-band 2.4GHz wireless networks with a maximum transmission rate of up to 450Mbps. A stack buffer overflow vulnerability exists in the Tenda CH22. The...

CVE-2025-5503 TOTOLINK X15 formMapReboot stack-based overflow

A vulnerability, which was classified as critical, was found in TOTOLINK X15 1.0.0-B20230714.1105. This affects the function formMapReboot of the file /boafrm/formMapReboot. The manipulation of the argument deviceMacAddr leads to stack-based buffer overflow. It is possible to initiate the attack...

PT-2025-30626

Name of the Vulnerable Software and Affected Versions GStreamer versions through 1.26.1 Description The subrip unescape formatting function within the subparse plugin may dereference a NULL pointer during subtitle file parsing, resulting in a crash. Recommendations Update to a version beyond 1.26...

PT-2025-30627

Name of the Vulnerable Software and Affected Versions GStreamer versions through 1.26.1 Description The tmplayer parse line function within the subparse plugin may dereference a NULL pointer when processing a subtitle file, potentially causing a crash. Recommendations Update to a version beyond...

Siemens SCALANCE LPE9403 Stack Buffer Overflow Vulnerability

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a stack buffer overflow vulnerability that can be exploited by an attacker to...