Lucene search
K

34201 matches found

Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26644

A flaw has been found in Tenda A18 Pro 02.03.02.28. This issue affects the function setSchedWifi of the file /goform/openSchedWifi. This manipulation causes stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been published and may be used...

9CVSS7.7AI score0.00572EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26645

A vulnerability has been found in Tenda A18 Pro 02.03.02.28. Impacted is the function fromSetIpMacBind of the file /goform/SetIpMacBind. Such manipulation of the argument list leads to stack-based buffer overflow. The attack can be executed remotely. The exploit has been disclosed to the public a...

9CVSS8AI score0.00479EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.4 views

PT-2026-26547

AutoMapper is a convention-based object-object mapper in .NET. Versions prior to 15.1.1 and 16.1.1 are vulnerable to a Denial of Service DoS attack. When mapping deeply nested object graphs, the library uses recursive method calls without enforcing a default maximum depth limit. This allows an...

7.5CVSS5.8AI score0.00542EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.9 views

AutoMapper 安全漏洞

AutoMapper is an object mapping library open source by Lucky Penny Software LLC. Versions of AutoMapper prior to 15.1.1 and 16.1.1 contained security vulnerabilities. These vulnerabilities stemmed from the lack of enforcing a default maximum depth limit when mapping deeply nested object graphs,...

7.5CVSS5.8AI score0.00542EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/03/20 12:0 a.m.4 views

CVE-2026-23276

In the Linux kernel, the following vulnerability has been resolved: net: add xmit recursion limit to tunnel xmit functions Tunnel xmit functions iptunnelxmit, ip6tunnelxmit lack their own recursion limit. When a bond device in broadcast mode has GRE tap interfaces as slaves, and those GRE tunnels...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of a recursion limit for the tunnel sending function. This vulnerability could lead to...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26629

A vulnerability was detected in Tenda A18 Pro 02.03.02.28. This vulnerability affects the function form fast setting wifi set of the file /goform/fast setting wifi set. The manipulation results in stack-based buffer overflow. The attack may be launched remotely. The exploit is now public and may ...

9CVSS8AI score0.00507EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.8 views

Tenda A18 Pro 安全漏洞

The Tenda A18 Pro is a wireless signal extender produced by the Chinese company Tenda. Version 02.03.02.28 of the Tenda A18 Pro contains a security vulnerability. This vulnerability stems from an overflow in the stack buffer during the operation of the sub423B50 function in the...

9CVSS7.5AI score0.00635EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.8 views

Tenda A18 Pro 安全漏洞

The Tenda A18 Pro is a wireless signal extender produced by the Chinese company Tenda. Version 02.03.02.28 of the Tenda A18 Pro contains a security vulnerability. This vulnerability stems from a stack buffer overflow issue in the fromSetIpMacBind function within the file /goform/SetIpMacBind,...

9CVSS7.5AI score0.00479EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/03/20 12:0 a.m.3 views

CVE-2026-4444

Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.1AI score0.00301EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.6 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 146.0.7680.153 contained a security vulnerability, which was caused by a stack buffer overflow in WebRTC, potentially leading to stack corruption...

8.8CVSS6AI score0.00301EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/19 11:25 p.m.6 views

CVE-2026-30871

A flaw was found in the OpenWrt mdns daemon. A remote attacker can exploit a Stack-based Buffer Overflow vulnerability in the parsequestion function by sending specially crafted DNS Domain Name System packets. These packets, specifically PTR Pointer Record queries for reverse DNS domains, can cau...

9.8CVSS6.7AI score0.01211EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/19 11:20 p.m.5 views

CVE-2026-30872

A flaw was found in OpenWrt's mdns daemon. A remote attacker can exploit a stack-based buffer overflow vulnerability by sending a specially crafted DNS query. This occurs when processing IPv6 reverse DNS queries, where the system fails to validate the length of incoming data. Successful...

9.8CVSS6.6AI score0.02221EPSS
Exploits0References6
NVD
NVD
added 2026/03/19 10:16 p.m.10 views

CVE-2026-30872

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the matchipv6addresses function, triggered when processing PTR queries for IPv6 reverse DNS domains .ip6.arpa receiv...

9.8CVSS0.02221EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/19 9:56 p.m.4 views

CVE-2026-30872

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the matchipv6addresses function, triggered when processing PTR queries for IPv6 reverse DNS domains .ip6.arpa receiv...

9.5CVSS6.3AI score0.02221EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/19 9:56 p.m.6 views

CVE-2026-30872 OpenWrt Project has a Stack-based Buffer Overflow vulnerability via IPv6 reverse DNS lookup

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the matchipv6addresses function, triggered when processing PTR queries for IPv6 reverse DNS domains .ip6.arpa receiv...

9.5CVSS6.3AI score0.02221EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/19 9:56 p.m.24 views

CVE-2026-30872 OpenWrt Project has a Stack-based Buffer Overflow vulnerability via IPv6 reverse DNS lookup

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the matchipv6addresses function, triggered when processing PTR queries for IPv6 reverse DNS domains .ip6.arpa receiv...

9.5CVSS0.02221EPSS
Exploits0References3
CVE
CVE
added 2026/03/19 9:56 p.m.10 views

CVE-2026-30872

OpenWrt OpenWrt mdns vulnerability CVE-2026-30872 affects versions prior to 24.10.6 and 25.12.1. The issue lies in the mdns daemon’s match_ipv6_addresses function, where a domain name copied into a 256-byte stack buffer via strcpy is followed by extracting a reverse IPv6 PTR query into a 46-byte ...

9.8CVSS6.3AI score0.02221EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/03/19 9:56 p.m.9 views

EUVD-2026-13249

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the matchipv6addresses function, triggered when processing PTR queries for IPv6 reverse DNS domains .ip6.arpa receiv...

9.5CVSS6.3AI score0.02221EPSS
Exploits0References3
OSV
OSV
added 2026/03/19 9:56 p.m.5 views

CVE-2026-30872 OpenWrt Project has a Stack-based Buffer Overflow vulnerability via IPv6 reverse DNS lookup

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the matchipv6addresses function, triggered when processing PTR queries for IPv6 reverse DNS domains .ip6.arpa receiv...

9.5CVSS6.3AI score0.02221EPSS
Exploits0References5
Rows per page
Query Builder