CVE-2026-0792

ALGO 8180 IP Audio Alerter SIP INVITE Alert-Info Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this...

CVE-2026-0791

ALGO 8180 IP Audio Alerter SIP INVITE Replaces Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is not required to exploit this...

Azure Linux 3.0 Security Update: espeak-ng (CVE-2023-49991)

The version of espeak-ng installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-49991 advisory. - Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition...

Tenda Ax3 security vulnerabilities

The Tenda Ax3 is a Wi-Fi 6 dual-band router with a gigabit port, produced by the Chinese company Tenda. The Tenda Ax3 v16.03.12.11 version contains a security vulnerability. This vulnerability stems from improper handling of the citytag stack buffer in the formGetIptv function, which may lead to...

Tenda AX-3 fromAdvSetMacMtuWan Function Stack Buffer Overflow Vulnerability

Tenda AX-3 is a home smart wireless router from Tenda that supports Wi-Fi6 802.11ax standard for home networking environment. The Tenda AX-3 suffers from a stack buffer overflow vulnerability, which stems from the failure of the serviceName2 parameter in the fromAdvSetMacMtuWan function to proper...

Tenda AX1806 安全漏洞

The Tenda AX1806 is a WiFi6 wireless router from Tenda China. The Tenda AX1806 suffers from a stack buffer overflow vulnerability that stems from the sub65B5C function's wanSpeed parameter failing to properly validate the length size of the input data, which can be exploited by an attacker to cau...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002610)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002610 advisory. The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003204)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003204 advisory. The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it...

MiracleLinux 8 : libxml2-2.9.7-19.el8_10 (AXSA:2025-9748:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9748:04 advisory. libxml2: Use-After-Free in libxml2 CVE-2024-56171 libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 CVE-2025-24928 Tenable has...

ROS-20260113-7399

A vulnerability in the loongarch component of the Linux operating system kernel is related to a buffer overflow on the stack. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2025-68622

Espressif ESP-IDF USB Host UVC Class Driver allows video streaming from USB cameras. Prior to 2.4.0, a vulnerability in the esp-usb UVC host implementation allows a malicious USB Video Class UVC device to trigger a stack buffer overflow during configuration-descriptor parsing. When UVC...

CVE-2023-49351

A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...

CVE-2023-31981

Sngrep v1.6.0 was discovered to contain a stack buffer overflow via the function packetsetpayload at /src/packet.c...

CVE-2023-40915

Tenda AX3 v16.03.12.11 has a stack buffer overflow vulnerability detected at function formfastsettingwifiset. This vulnerability allows attackers to cause a Denial of Service DoS via the ssid parameter...

CVE-2018-9386

In rebootblockcommand of htc rebootblock driver, there is a possible stack buffer overflow due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-9418

In handleappcurvalresponse of dtifrc.cc, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2018-4301

This issue is fixed in SCSSU-201801. A potential stack based buffer overflow existed in GemaltoKeyHandle.cpp...

CVE-2021-41458

In GPAC MP4Box v1.1.0, there is a stack buffer overflow at src/utils/error.c:1769 which leads to a denial of service vulnerability...

CVE-2021-41456

There is a stack buffer overflow in MP4Box v1.0.1 at src/filters/dmxnhml.c:1004 in the nhmldmxsendsample function szXmlTo parameter which leads to a denial of service vulnerability...

CVE-2021-27398

A vulnerability has been identified in Tecnomatix Plant Simulation All versions V16.0.5. The PlantSimCore.dll library lacks proper validation of user-supplied data when parsing SPP files. This could result in a stack based buffer overflow, a different vulnerability than CVE-2021-27396. An attacke...