PT-2026-32501

A vulnerability has been found in Tenda F456 1.0.0.5. This issue affects the function fromNatStaticSetting of the file /goform/NatStaticSetting. The manipulation of the argument page leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclos...

TOTOLINK A3002MU 安全漏洞

Totolink A3002MU is a wireless router product that provides network connectivity and wireless access. A stack buffer overflow vulnerability exists in the Totolink A3002MU. The vulnerability stems from a failure to properly handle the wan-url parameter in the HTTP request handling component, which...

CVE-2026-29628

The CVE affects the tinyobjloader project, where a stack overflow in the experimental/tinyobj_loader_opt.h file (commit d56555b) can be triggered by a specially crafted .mtl file, leading to a Denial of Service. Evidence across multiple feeds (NVD, SUSE, Red Hat, ENISA, PT-Security, etc.) confirm...

Tenda F456 安全漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a security vulnerability. This vulnerability stems from an stack buffer overflow issue in the fromexeCommand function within the file /goform/exeCommand, which handles the cmdinpu...

Tenda F456 安全漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a security vulnerability. This vulnerability stems from a stack buffer overflow issue in the formwebtypelibrary function within the file/goform/webtypelibrary, specifically when...

Tenda F456 安全漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a security vulnerability. This vulnerability stems from a stack buffer overflow issue in the fromqossetting function within the file /goform/qossetting, specifically regarding the...

PT-2026-32436

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

CVE-2026-29628

A stack overflow in the experimental/tinyobjloaderopt.h file of tinyobjloader commit d56555b allows attackers to cause a Denial of Service DoS via supplying a crafted .mtl file...

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-19 and 6.9.13-44 contained security vulnerabilities. These vulnerabilities were due to a stack...

PT-2026-32526

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-19 ImageMagick versions prior to 6.9.13-44 Description A stack overflow in the FX expression parser allows an attacker to crash the process by providing a deeply nested expression. Recommendations Update to...

Tenda F456 安全漏洞

The Tenda F456 is a wireless router produced by the Chinese company Tenda. Version 1.0.0.5 of the Tenda F456 contains a security vulnerability. This vulnerability stems from an issue with the formWrlsafeset function in the goform/AdvSetWrlsafeset file, where there is a stack buffer overflow due t...

Tenda F451 安全漏洞

The Tenda F451 is a wireless router produced by the Chinese company Tenda. The version Tenda F451 1.0.0.7cnsvn7958 contains a security vulnerability. This vulnerability arises from improper handling of the parameter “page” in the functions frmL7ImForm and L7Im, which may lead to a stack buffer...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A stack overflow vulnerability exists in the Huawei HarmonyOS media platform, which can be exploited by an attacker to cause availability to be compromised...

PT-2026-32257

Bluetooth ACPI Drivers provided by Dynabook Inc. contain a stack-based buffer overflow vulnerability. An attacker may execute arbitrary code by modifying certain registry values...

TOTOLINK A7000R 安全漏洞

TOTOLINK A7000R is a wireless router product that is mainly used to provide network connectivity and Wi-Fi access. TOTOLINK A7000R suffers from a stack buffer overflow vulnerability. The vulnerability stems from the setWiFiEasyGuestCfg function in the /cgi-bin/cstecgi.cgi file failing to properly...

Tenda F451 安全漏洞

The Tenda F451 is a wireless router produced by the Chinese company Tenda. The version Tenda F451 1.0.0.7cnsvn7958 contains a security vulnerability. This vulnerability arises from improper handling of the parameters “wanmode” and “PPPPassword” in the function fromAdvSetWan within the...

Tenda F451 安全漏洞

Tenda F451 is a wireless router product that provides network connectivity and wireless coverage. The Tenda F451 suffers from a stack buffer overflow vulnerability. The vulnerability stems from the failure of the fromSetIpBind function in /goform/SetIpBind to properly handle the page parameter,...

Amazon Linux 2023 : vim-common, vim-data, vim-default-editor (ALAS2023-2026-1539)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1539 advisory. Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault SEGV exist in Vim's swap file recovery logic. Both are caused b...

Tenda F456 安全漏洞

Tenda F456 is a home wireless router product that is mainly used to provide wireless network access and network management functions. The Tenda F456 suffers from a stack buffer overflow vulnerability. The vulnerability stems from the failure of the fromNatStaticSetting function in...

Amazon Linux 2023 : ImageMagick, ImageMagick-c++, ImageMagick-c++-devel (ALAS2023-2026-1550)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1550 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 display...