Lucene search
K

74126 matches found

NVD
NVD
added 2026/03/31 4:16 p.m.2 views

CVE-2026-5204

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component Parameter Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack can be initiated remotely. The exploi...

9CVSS0.02475EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/03/31 3:45 p.m.23 views

CVE-2026-5204 Tenda CH22 Parameter webtypelibrary formWebTypeLibrary stack-based overflow

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component Parameter Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack can be initiated remotely. The exploi...

9CVSS0.02475EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/03/31 3:45 p.m.5 views

CVE-2026-5204 Tenda CH22 Parameter webtypelibrary formWebTypeLibrary stack-based overflow

A vulnerability was determined in Tenda CH22 1.0.0.1. Affected is the function formWebTypeLibrary of the file /goform/webtypelibrary of the component Parameter Handler. This manipulation of the argument webSiteId causes stack-based buffer overflow. The attack can be initiated remotely. The exploi...

9CVSS6.5AI score0.02475EPSS
Exploits1References5
CVE
CVE
added 2026/03/31 3:45 p.m.10 views

CVE-2026-5204

The CVE-2026-5204 entry concerns the Tenda CH22 1.0.0.1 device. Affected is the function formWebTypeLibrary within /goform/webtypelibrary of the Parameter Handler. The input argument webSiteId can be manipulated to trigger a stack-based buffer overflow, exposing the device to remote exploitation....

9CVSS7.8AI score0.02475EPSS
Exploits1References5Affected Software1
SUSE Linux
SUSE Linux
added 2026/03/31 9:4 a.m.7 views

Security update for libjxl

This update for libjxl fixes the following issue: CVE-2024-11498: Resource exhaustion via Stack overflow in libjxl bsc1233785. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

5.7CVSS6.7AI score0.00607EPSS
Exploits0References4
OSV
OSV
added 2026/03/31 9:4 a.m.4 views

SUSE-SU-2026:1154-1 Security update for libjxl

This update for libjxl fixes the following issue: - CVE-2024-11498: Resource exhaustion via Stack overflow in libjxl bsc1233785...

7.5CVSS6.7AI score0.00607EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/31 9:3 a.m.4 views

SUSE CVE-2016-20038

yTree 1.94-1.1 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an excessively long argument to the application. Attackers can craft a malicious command-line argument containing shellcode and a return address to overwrite the...

8.6CVSS6.6AI score0.00177EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/31 9:2 a.m.4 views

SUSE CVE-2017-20229

MAWK 1.3.3-17 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting inadequate boundary checks on user-supplied input. Attackers can craft malicious input that overflows the stack buffer and execute a return-oriented programmi...

9.8CVSS6.6AI score0.00602EPSS
Exploits1References3
SUSE Linux
SUSE Linux
added 2026/03/31 8:40 a.m.4 views

Security update for perl-XML-Parser

This update for perl-XML-Parser fixes the following issues: CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams bsc1259901. CVE-2006-10003: off-by-one heap buffer overflow in stserialstack bsc1259902. Patch Instructions: To install this SUSE update use the SUSE...

8.8CVSS6.1AI score0.00604EPSS
Exploits0References8
OSV
OSV
added 2026/03/31 8:40 a.m.1 views

SUSE-SU-2026:1153-1 Security update for perl-XML-Parser

This update for perl-XML-Parser fixes the following issues: - CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams bsc1259901. - CVE-2006-10003: off-by-one heap buffer overflow in stserialstack bsc1259902...

9.8CVSS6.1AI score0.00604EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/03/31 8:37 a.m.4 views

SUSE CVE-2026-5037

A vulnerability was determined in mxml up to 4.0.4. This issue affects the function indexsort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr can lead to stack-based buffer overflow. The attack is restricted to local execution. The exploit ha...

4.8CVSS6.2AI score0.00128EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/03/31 8:28 a.m.4 views

Security update for perl-XML-Parser

This update for perl-XML-Parser fixes the following issues: CVE-2006-10002: heap buffer overflow in parsestream when processing UTF-8 input streams bsc1259901. CVE-2006-10003: off-by-one heap buffer overflow in stserialstack bsc1259902. Patch Instructions: To install this SUSE update use the SUSE...

8.8CVSS6AI score0.00604EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/31 12:31 a.m.2 views

EUVD-2026-17249

A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function fromAdvSetWan of the file /goform/AdvSetWan of the component Parameter Handler. The manipulation of the argument wanmode results in stack-based buffer overflow. The attack can be executed remotely. The exploit has been mad...

9CVSS7.8AI score0.00773EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/31 12:31 a.m.4 views

EUVD-2026-17252

A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/QuickIndex of the component Parameter Handler. This manipulation of the argument mitlinktype causes stack-based buffer overflow. The attack is possible to be carried out remotely. Th...

9CVSS6.4AI score0.00632EPSS
Exploits1References6
NVD
NVD
added 2026/03/31 12:16 a.m.2 views

CVE-2026-5156

A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/QuickIndex of the component Parameter Handler. This manipulation of the argument mitlinktype causes stack-based buffer overflow. The attack is possible to be carried out remotely. Th...

9CVSS0.00632EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.6 views

PT-2026-29347

Name of the Vulnerable Software and Affected Versions D-Link DNS-120 D-Link DNR-202L D-Link DNS-315L D-Link DNS-320 D-Link DNS-320L D-Link DNS-320LW D-Link DNS-321 D-Link DNR-322L D-Link DNS-323 D-Link DNS-325 D-Link DNS-326 D-Link DNS-327L D-Link DNR-326 D-Link DNS-340L D-Link DNS-343 D-Link...

9CVSS7.5AI score0.00737EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.5 views

PT-2026-29385

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a stack overflow SO in SIccCalcOp::ArgsUsed. The issue is observable under AddressSanitizer as a stack-overflow when iccApplyProfiles processes ...

6.2CVSS5.8AI score0.00222EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained security vulnerabilities, which were caused by a stack buffer overflow in the CIccTagFixedNum::GetValues function...

6.2CVSS6AI score0.00177EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.10 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.6 contained security vulnerabilities; these vulnerabilities were caused by specially crafted ICC configuration files that could lead to stack buffer overflo...

6.2CVSS6AI score0.00156EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.7 views

多款D-Link产品安全漏洞

D-Link DNS-120, etc., are products of D-Link Corporation from China. The D-Link DNS-120 is a network storage adapter. The D-Link DNR-202L is a network video camera. The D-Link DNS-315L is a network attached storage device. Several D-Link products have security vulnerabilities, which stem from...

9CVSS7.7AI score0.00715EPSS
Exploits1References5
Rows per page
Query Builder