6880 matches found
CVE-2024-36435
An issue was discovered on Supermicro BMC firmware in select X11, X12, H12, B12, X13, H13, and B13 motherboards and CMM6 modules. An unauthenticated user can post crafted data to the interface that triggers a stack buffer overflow, and may lead to arbitrary remote code execution on a BMC...
CVE-2024-36435
CVE-2024-36435 : Affects Supermicro BMC firmware on select X11, X12, H12, B12, X13, H13, B13 motherboards and CMM6 modules. An unauthenticated attacker can send crafted data to the BMC web interface, triggering a stack-based buffer overflow and potentially enabling arbitrary remote code execution...
Siemens JT Open and PLM Stack Buffer Overflow Vulnerability
The Siemens JT Open Toolkit Siemens JTTK is a C++ application programming interface API from Siemens, Germany.The PLM XML SDK is a lightweight, flexible mechanism for product data transfer. It supports an adapter-based approach to transform data from any source into an XML representation. A stack...
CVE-2024-39880
Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the curren...
PT-2024-28706 · Delta Electronics · Cncsoft-G2
Name of the Vulnerable Software and Affected Versions: Delta Electronics CNCSoft-G2 affected versions not specified Description: The issue is related to a lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. This can be exploited ...
Siemens JT Open Toolkit 安全漏洞
The Siemens JT Open Toolkit Siemens JTTK is a C++ application programming interface API from Siemens, Germany.The PLM XML SDK is a lightweight, flexible mechanism for product data transfer. It supports an adapter-based approach to transform data from any source into an XML representation. A stack...
PT-2024-13760 · Realtek · Realtek Rtl819X Jungle Sdk
Name of the Vulnerable Software and Affected Versions: Realtek rtl819x Jungle SDK version 3.4.11 Description: A stack-based buffer overflow vulnerability exists in the boa rollback control code functionality. A specially crafted series of network requests can lead to arbitrary code execution. An...
SUSE CVE-2024-39478
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
CVE-2024-39478
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
DEBIAN-CVE-2024-39478
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
AZL-62618 CVE-2024-39478 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
CVE-2024-39478
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
UBUNTU-CVE-2024-39478
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
CVE-2024-39478 crypto: starfive - Do not free stack buffer
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
CVE-2024-39478 crypto: starfive - Do not free stack buffer
In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Do not free stack buffer RSA text data uses variable length buffer allocated in software stack. Calling kfree on it causes undefined behaviour in subsequent operations...
CVE-2024-39478
The CVE-2024-39478 vulnerability affects the Linux kernel crypto: starfive code path, where RSA text data uses a variable-length buffer allocated on the software stack. Calling kfree on that buffer can cause undefined behavior in subsequent operations, due to freeing a stack-allocated buffer. The...
CBL Mariner 2.0 Security Update: hdf5 (CVE-2024-29158)
The version of hdf5 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29158 advisory. - HDF5 through 1.14.3 contains a stack buffer overflow in H5FLarrmalloc, resulting in the corruption of the...
CBL Mariner 2.0 Security Update: hdf5 (CVE-2024-29164)
The version of hdf5 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29164 advisory. - HDF5 through 1.14.3 contains a stack buffer overflow in H5Rdecodeheap, resulting in the corruption of the...
SONY XAV-AX5500 Stack Buffer Overflow Vulnerability
The SONY XAV-AX5500 is a 7-inch in-vehicle center console with a wide range of functions and advanced technical features. The SONY XAV-AX5500 suffers from a stack buffer overflow vulnerability that stems from an extended content description object built in a WMV media file that can trigger an...
SONY XAV-AX5500 Stack Buffer Overflow Vulnerability (CNVD-2025-14982)
The SONY XAV-AX5500 is a 7-inch in-vehicle center console with a wide range of functions and advanced technical features. The SONY XAV-AX5500 suffers from a stack buffer overflow vulnerability that originates in the implementation of the Apple CarPlay protocol and can be exploited by an attacker ...