OSV-2025-289 Stack-buffer-overflow in ot::Cli::Utils::OutputLine

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=411460530 Crash type: Stack-buffer-overflow READ Crash state: ot::Cli::Utils::OutputLine ot::Cli::Dns::HandleDnsRecordResponse ot::Dns::Client::FinalizeQuery...

PT-2025-19365 · Git +1 · Openthread

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software contains a stack-buffer-overflow read vulnerability. The crash state indicates the issue occurs within the Cli::Utils::OutputLine,...

CVE-2025-42599

Active! mail 6 BuildInfo: 6.60.05008561 and earlier contains a stack-based buffer overflow vulnerability. Receiving a specially crafted request created and sent by a remote unauthenticated attacker may lead to arbitrary code execution and/or a denial-of-service DoS condition...

D-Link DI-8100 Router Stack Buffer Overflow Vulnerability

The D-Link DI-8100 is a broadband router from D-Link designed for small to medium sized network environments. A stack buffer overflow vulnerability exists in the D-Link DI-8100. The vulnerability stems from the authasp function in the /auth.asp file in the jhttpd component not effectively limitin...

D-Link DI-8100 安全漏洞

The D-Link DI-8100 is a broadband router from D-Link designed for small to medium sized network environments. A stack buffer overflow vulnerability exists in the D-Link DI-8100. The vulnerability stems from the authasp function in the /auth.asp file in the jhttpd component not effectively limitin...

CVE-2025-3289

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a stack-based memory buffer overflow. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...

USN-7346-3 opensc vulnerabilities

USN-7346-1 fixed vulnerabilities in OpenSC. The update introduced a regression which broke smartcard based authentication. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that OpenSC did not correctly handle certain memory operations...

CVE-2025-29988

Dell Client Platform BIOS contains a Stack-based Buffer Overflow Vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution...

PT-2025-28638 · Git +1 · Tarantool

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software contains a stack-buffer-overflow write issue. The crash state involves the functions snap usedef, lj snap purge, and lj record ins...

PT-2025-15540 · Microsoft · Windows Telephony Service +1

Name of the Vulnerable Software and Affected Versions: Windows Telephony Service affected versions not specified Description: A stack-based buffer overflow in the Windows Telephony Service allows an unauthorized attacker to execute code over a network. Recommendations: At the moment, there is no...

PT-2025-15637

Name of the Vulnerable Software and Affected Versions Nissan Leaf versions manufactured in 2020 affected versions not specified Description A flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue is due to insufficient boundary...

CVE-2025-3196

A stack-buffer-overflow vulnerability was found in the Assimp::MD2Importer::InternReadFile function within the Assimp Library. This issue occurs when processing certain malformed files, leading to an out-of-bounds write and potential application crash. Mitigation Mitigation for this issue is eith...

CVE-2025-3166

CVE-2025-3166 affects code-projects Product Management System 1.0, specifically the search_item function in the Search Product Menu. The root cause is manipulation of the target argument leading to a stack-based buffer overflow. Local access is required to exploit, and the exploit has been disclo...

Ivanti Connect Secure 安全漏洞

Ivanti Connect Secure ICS is a secure remote network connection tool from Ivanti Corporation, USA. A security vulnerability exists in Ivanti Connect Secure that stems from a stack buffer overflow that could lead to remote code execution...

SUSE-SU-2025:1084-1 Security update for corosync

This update for corosync fixes the following issues: - CVE-2025-30472: Fixed stack buffer overflow from 'orftokenendianconvert' bsc1239987...

Novastar CX40 安全漏洞

Novastar CX40 is a 4K LED display controller from Novastar. A security vulnerability exists in Novastar CX40 version 2.44.0 and earlier, which originates from a stack buffer overflow in the NetFilter Utility component...

CVE-2025-26004

Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when requesting admin.cgi parameter with setDdns...

Tenda AC8 Stack Buffer Overflow Vulnerability (CNVD-2025-07606)

Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a stack buffer overflow vulnerability, which stems from the deviceid parameter in the getparentControllistInfo function failing to properly validate the length of the input data, which can be exploited by an...

D-Link DAP-1620 check_dws_cookie function stack buffer overflow vulnerability

The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a stack buffer overflow vulnerability that stems from the cookie handling component checkdwscookie function failing to properly validate the length and size of input data, which can be exploited by a...

D-Link DAP-1620 Stack Buffer Overflow Vulnerability

The D-Link DAP-1620 is a wireless repeater extender from D-Link. The D-Link DAP-1620 suffers from a stack buffer overflow vulnerability. The vulnerability stems from improper handling of the parameter uid and can be exploited by an attacker to trigger a denial of service or execute malicious code...