Lucene search
K

34201 matches found

OSV
OSV
added 2026/03/19 3:16 p.m.3 views

UBUNTU-CVE-2025-69720

The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow in analyzestring in progs/infocmp.c...

9.8CVSS6.2AI score0.00414EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/19 1:32 p.m.5 views

Security Bulletin: IBM Datapower Operations Dashboard is vulnerable to a StackOverflowError CVE-2025-48924

Summary Apache Commons is used by the IBM Datapower Operations Dashboard in their Java components utility operations Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with...

5.3CVSS5.8AI score0.02164EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2026/03/19 12:30 p.m.8 views

EUVD-2006-7234

XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in stserialstack. In the case stackptr == stacksize - 1, the stack will NOT be expanded. Then the new value will be written at location ++stackptr, which equals stacksize and therefore falls just outside the allocat...

9.8CVSS6AI score0.00548EPSS
Exploits0References4
CVE
CVE
added 2026/03/19 11:8 a.m.16 views

CVE-2006-10003

XML::Parser (Perl) up to version 2.47 contains an off-by-one heap buffer overflow in st_serial_stack, enabling memory corruption and crashes on deeply nested XML. A patched version is available (varies by distro) — Debian fixes 2.46-2+deb11u1 and 2.47-2~deb13u1; RedHat/Debian/Linux advisories als...

9.8CVSS6AI score0.00548EPSS
Exploits0References21Affected Software1
Debian CVE
Debian CVE
added 2026/03/19 11:8 a.m.4 views

CVE-2006-10003

XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in stserialstack. In the case stackptr == stacksize - 1, the stack will NOT be expanded. Then the new value will be written at location ++stackptr, which equals stacksize and therefore falls just outside the allocat...

9.8CVSS5.6AI score0.00548EPSS
Exploits0
OSV
OSV
added 2026/03/19 8:11 a.m.3 views

SUSE-SU-2026:20911-1 Security update for poppler

This update for poppler fixes the following issues: - CVE-2025-11896: infinite recursion leading to stack overflow due to object loop in PDF CMap bsc1252337...

2.1CVSS5.9AI score0.00156EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/03/19 8:4 a.m.6 views

Stack overflow parsing XML with deeply nested DTD content models

...

7.5CVSS5.8AI score0.00621EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/19 12:27 a.m.6 views

SUSE CVE-2026-23246

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: bounds-check linkid in ieee80211mlreconfiguration linkid is taken from the ML Reconfiguration element control & 0x000f, so it can be 0..15. linkremovaltimeout has IEEE80211MLDMAXNUMLINKS 15 elements, so index 15 i...

5.5CVSS5.6AI score0.0029EPSS
Exploits0References16
Amazon
Amazon
added 2026/03/19 12:0 a.m.10 views

Important: libtiff

Issue Overview: libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c. CVE-2025-61143 libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function. CVE-2025-61144 Affected Packages: libtiff...

9.8CVSS5.7AI score0.00253EPSS
Exploits1
Amazon
Amazon
added 2026/03/19 12:0 a.m.5 views

Important: compat-libtiff3

Issue Overview: libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c. CVE-2025-61143 libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function. CVE-2025-61144 Affected Packages:...

9.8CVSS5.7AI score0.00253EPSS
Exploits1
Redos
Redos
added 2026/03/19 12:0 a.m.3 views

ROS-20260319-73-0036

Vulnerability in vim related to stack buffer overflow. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code...

7.5CVSS6.6AI score0.00284EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.9 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the American company wolfSSL, aimed at developers working with embedded systems. There is a security vulnerability in wolfSSL, which stems from a stack buffer overflow in the PKCS7 SignedData encoding function. When...

7.1CVSS6AI score0.00101EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/19 12:0 a.m.3 views

Belkin F9K1122 Stack Buffer Overflow Vulnerability (CNVD-2026-14686)

The Belkin F9K1122 is a WiFi signal extender. The Belkin F9K1122 suffers from a stack buffer overflow vulnerability, which originates from a misbehavior of the webpage parameter of the function formReboot in the file /goform/formReboot, that can be exploited by an attacker to execute arbitrary co...

9CVSS7.7AI score0.00455EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.5 views

PT-2026-26380

Name of the Vulnerable Software and Affected Versions OpenWrt Project versions prior to 24.10.6 and versions prior to 25.12.1 Description The OpenWrt Project, a Linux operating system for embedded devices, is affected by a Stack-based Buffer Overflow in the mdns daemon. The issue resides within t...

9.8CVSS6.1AI score0.01211EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

Amazon Linux 2 : libtiff, --advisory ALAS2-2026-3196 (ALAS-2026-3196)

The version of libtiff installed on the remote host is prior to 4.0.3-35. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3196 advisory. libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c...

9.8CVSS5.9AI score0.00253EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.6 views

PT-2026-26312

A stack buffer overflow vulnerability exists in wolfSSL's PKCS7 SignedData encoding functionality. In wc PKCS7 BuildSignedAttributes, when adding custom signed attributes, the code passes an incorrect capacity value esd-signedAttribsCount to EncodeAttributes instead of the remaining available spa...

5.9CVSS6.1AI score0.00101EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.10 views

PX4-Autopilot 安全漏洞

PX4-Autopilot is an open-source drone autopilot system developed by PX4. Versions of PX4-Autopilot prior to 1.17.0-rc2 contained security vulnerabilities. These vulnerabilities were caused by a stack-based buffer overflow issue in the MavlinkLogHandler, which could potentially allow attackers to...

6.5CVSS6.1AI score0.00365EPSS
Exploits3References2
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.8 views

wolfSSL(CyaSSL) 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library developed by the US-based wolfSSL company, designed for developers working with embedded systems. Version 5.8.4 of wolfSSL CyaSSL contains a security vulnerability. This vulnerability stems from a stack buffer overflow issue in...

9.8CVSS6.5AI score0.00444EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.7 views

OpenWrt 安全漏洞

OpenWrt is an open-source Linux operating system designed for embedded devices. Versions prior to OpenWrt 24.10.6 and 25.12.1 contained security vulnerabilities. These vulnerabilities were caused by a stack buffer overflow in the matchipv6addresses function of the mdns daemon, which could lead to...

9.8CVSS6.3AI score0.02221EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/19 12:0 a.m.11 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2026-1641)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.2CVSS5.8AI score0.00165EPSS
Exploits0References2
Rows per page
Query Builder