Lucene search
K

34200 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/20 4:31 p.m.2 views

CVE-2025-15608

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

7.7CVSS6.9AI score0.00528EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/20 4:31 p.m.19 views

CVE-2025-15608 Buffer Overflow in Network Probe Handling Function of TP-Link Archer AX53

This vulnerability in AX53 v1 results from insufficient input sanitization in the device’s probe handling logic, where unvalidated parameters can trigger a stack-based buffer overflow that causes the affected service to crash and, under specific conditions, may enable remote code execution throug...

7.7CVSS0.00528EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/20 4:2 p.m.22 views

CVE-2026-4489 Tenda A18 Pro fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow

A vulnerability was detected in Tenda A18 Pro 02.03.02.28. This vulnerability affects the function formfastsettingwifiset of the file /goform/fastsettingwifiset. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may be used...

9CVSS0.00507EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/20 4:2 p.m.5 views

CVE-2026-4489 Tenda A18 Pro fast_setting_wifi_set form_fast_setting_wifi_set stack-based overflow

A vulnerability was detected in Tenda A18 Pro 02.03.02.28. This vulnerability affects the function formfastsettingwifiset of the file /goform/fastsettingwifiset. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may be used...

9CVSS6.4AI score0.00507EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/20 4:2 p.m.4 views

CVE-2026-4489

A vulnerability was detected in Tenda A18 Pro 02.03.02.28. This vulnerability affects the function formfastsettingwifiset of the file /goform/fastsettingwifiset. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may be used...

9CVSS8AI score0.00507EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/03/20 4:2 p.m.15 views

CVE-2026-4489

CVE-2026-4489 affects Tenda A18 Pro firmware 02.03.02.28. The vulnerability lies in the function form_fast_setting_wifi_set within the file /goform/fast_setting_wifi_set, causing a stack-based buffer overflow. It can be triggered remotely over the network, and public exploits exist. Impact includ...

9CVSS8AI score0.00507EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/20 3:31 p.m.4 views

EUVD-2026-13702

A vulnerability was found in D-Link DIR-513 1.10. This affects the function formEasySetPassword of the file /goform/formEasySetPassword of the component Web Service. The manipulation of the argument curTime results in stack-based buffer overflow. The attack may be performed from remote. The explo...

9CVSS6.2AI score0.0061EPSS
Exploits1References8
OSV
OSV
added 2026/03/20 2:26 p.m.7 views

OESA-2026-1697 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

8.1CVSS6.7AI score0.00353EPSS
Exploits0References17
OSV
OSV
added 2026/03/20 2:26 p.m.7 views

OESA-2026-1696 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

8.1CVSS6.7AI score0.00353EPSS
Exploits0References17
OSV
OSV
added 2026/03/20 2:26 p.m.6 views

OESA-2026-1694 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

8.1CVSS6.7AI score0.00353EPSS
Exploits0References17
OSV
OSV
added 2026/03/20 2:26 p.m.5 views

OESA-2026-1693 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

8.1CVSS6.7AI score0.00353EPSS
Exploits0References17
OSV
OSV
added 2026/03/20 2:25 p.m.9 views

OESA-2026-1692 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

8.1CVSS6.6AI score0.00353EPSS
Exploits0References15
NVD
NVD
added 2026/03/20 2:16 p.m.4 views

CVE-2026-4486

A vulnerability was found in D-Link DIR-513 1.10. This affects the function formEasySetPassword of the file /goform/formEasySetPassword of the component Web Service. The manipulation of the argument curTime results in stack-based buffer overflow. The attack may be performed from remote. The explo...

9CVSS0.0061EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/03/20 2:2 p.m.23 views

CVE-2026-4486 D-Link DIR-513 Web Service formEasySetPassword stack-based overflow

A vulnerability was found in D-Link DIR-513 1.10. This affects the function formEasySetPassword of the file /goform/formEasySetPassword of the component Web Service. The manipulation of the argument curTime results in stack-based buffer overflow. The attack may be performed from remote. The explo...

9CVSS0.0061EPSS
Exploits1References7
OSV
OSV
added 2026/03/20 12:35 p.m.6 views

CLSA-2026-1774010101 Fix CVE(s): CVE-2026-25898, CVE-2026-25971, CVE-2026-25983

SECURITY UPDATE: out-of-bound read with negative pixel index in UIL and XPM encoders - debian/patches/CVE-2026-25898.patch: add bounds check on pixel index value returned by GetPixelIndex before using as array subscript - CVE-2026-25898 SECURITY UPDATE: heap use-after-free in MSL repage and roll...

9.8CVSS7AI score0.00435EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/20 12:6 p.m.4 views

CVE-2026-23276

A flaw was found in the Linux kernel. When a bond device in broadcast mode has Generic Routing Encapsulation GRE tap interfaces configured as slaves, and these GRE tunnels are routed back through the bond, multicast or broadcast network traffic can trigger an infinite recursion. This recursion...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References4
OSV
OSV
added 2026/03/20 11:37 a.m.14 views

BIT-PARSE-2026-32886 Parse Server's Cloud function dispatch crashes server via prototype chain traversal

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0 and 8.6.47, remote clients can crash the Parse Server process by calling a cloud function endpoint with a crafted function name that traverses the JavaScript prototype chain of a...

8.2CVSS6AI score0.00512EPSS
Exploits0References4
OSV
OSV
added 2026/03/20 9:52 a.m.3 views

CLSA-2026-1774000371 Fix of 8 CVEs

SECURITY UPDATE: stack buffer overflow in msl.c attribute handling, path traversal bypass of security policy, XSS in HTML coder output, and MSL attribute overflow - debian/patches/CVE-2026-25797CVE-2026-25965CVE-2026-25968CVE-2026-25982.patch: Fix memory leaks, stack overflows, integer overflows...

9.8CVSS7AI score0.00671EPSS
Exploits1References1
OSV
OSV
added 2026/03/20 9:16 a.m.5 views

UBUNTU-CVE-2026-23276

In the Linux kernel, the following vulnerability has been resolved: net: add xmit recursion limit to tunnel xmit functions Tunnel xmit functions iptunnelxmit, ip6tunnelxmit lack their own recursion limit. When a bond device in broadcast mode has GRE tap interfaces as slaves, and those GRE tunnels...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/20 8:8 a.m.24 views

CVE-2026-23276 net: add xmit recursion limit to tunnel xmit functions

In the Linux kernel, the following vulnerability has been resolved: net: add xmit recursion limit to tunnel xmit functions Tunnel xmit functions iptunnelxmit, ip6tunnelxmit lack their own recursion limit. When a bond device in broadcast mode has GRE tap interfaces as slaves, and those GRE tunnels...

0.00128EPSS
Exploits0References4
Rows per page
Query Builder