74148 matches found
CVE-2026-4904
A vulnerability has been found in Tenda AC5 15.03.06.47. This issue affects the function formSetCfm of the file /goform/setcfm of the component POST Request Handler. Such manipulation of the argument funcpara1 leads to stack-based buffer overflow. The attack may be launched remotely. The exploit...
CVE-2026-4905
A vulnerability was found in Tenda AC5 15.03.06.47. Impacted is the function formWifiWpsOOB of the file /goform/WifiWpsOOB of the component POST Request Handler. Performing a manipulation of the argument index results in stack-based buffer overflow. Remote exploitation of the attack is possible...
SUSE CVE-2026-33532
yaml is a YAML parser and serialiser for JavaScript. Parsing a YAML document with a version of yaml on the 1.x branch prior to 1.10.3 or on the 2.x branch prior to 2.8.3 may throw a RangeError due to a stack overflow. The node resolution/composition phase uses recursive function calls without a...
SUSE CVE-2026-33536
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds...
SC 缓冲区错误漏洞
SC is a software developed by SC OpenSource. Version 7.16 of SC contains a buffer overflow vulnerability, which stems from a stack buffer overflow. This vulnerability could allow local attackers to execute arbitrary code...
Mapscrn 缓冲区错误漏洞
Mapscrn is a software developed under the MSK open-source project. Version 2.0.3 of Mapscrn contains a buffer overflow vulnerability. This vulnerability stems from a stack buffer overflow, which could allow local attackers to execute arbitrary code or cause a denial-of-service attack by providing...
TiEmu 缓冲区错误漏洞
TiEmu is a handheld emulator developed by the Linux Programmer Group. Versions of TiEmu 2.08 and earlier contained a buffer overflow vulnerability. This vulnerability stemmed from a stack buffer overflow, which could allow attackers to execute arbitrary code by exploiting insufficient input...
PT-2026-28258
SIPP 3.3 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious input in the configuration file. Attackers can craft a configuration file with oversized values that overflow a stack buffer, overwriting the...
SIPp 访问控制错误漏洞
SIPp is an open-source SIP protocol testing tool and traffic generator developed by SIPp. Version 3.3 of SIPp contains a vulnerability related to access control, which stems from a stack buffer overflow. This vulnerability could allow unverified local attackers to execute arbitrary code...
PT-2026-28232
Name of the Vulnerable Software and Affected Versions Mapscrn version 2.0.3 Description A stack-based buffer overflow allows local attackers to execute arbitrary code or cause a denial of service by providing an oversized input buffer. This is achieved by crafting a malicious buffer containing ju...
Flat Assembler 缓冲区错误漏洞
Flat Assembler is an assembly language compiler developed by Tomasz Grysztar, designed to work on multiple platforms. Version 1.71.21 of Flat Assembler contains a buffer overflow vulnerability. This vulnerability stems from a stack buffer overflow, which could allow local attackers to execute...
PT-2026-28226
Name of the Vulnerable Software and Affected Versions TRN version 3.6-23 Description A stack buffer overflow allows local attackers to execute arbitrary code by providing an oversized argument to the application. This is achieved by crafting a malicious command-line argument containing 156 bytes ...
Practical Music Search 访问控制错误漏洞
Practical Music Search is a search tool developed by slicer86, designed to support music information retrieval and content indexing. Version 0.42 of Practical Music Search contains an access control error vulnerability, which stems from a stack buffer overflow. This vulnerability could allow...
Varaneckas JAD Java Decompiler 缓冲区错误漏洞
Varaneckas JAD Java Decompiler is a tool developed by Varaneckas Corporation that decompiles Java bytecode into readable source code. Versions of Varaneckas JAD Java Decompiler 1.5.8e-1kali1 and earlier contained a buffer error vulnerability. This vulnerability stemmed from a stack buffer overflo...
Wavlink WL-WN579X3-C 安全漏洞
Wavlink WL-WN579X3-C is a wireless network extender produced by Wavlink Corporation. The Wavlink WL-WN579X3-C 231124 version contains a security vulnerability. This vulnerability stems from incorrect handling of the UpnpEnabled parameter, which may lead to a stack-based buffer overflow attack...
PT-2026-28231
JAD 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers can craft malicious input strings exceeding 8150 bytes to overflow the stack, overwrite return...
PT-2026-28233
JAD Java Decompiler 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying overly long input that exceeds buffer boundaries. Attackers can craft malicious input passed to the jad command to overflow the stack and...
PT-2026-28225
Multi Emulator Super System 0.154-3.1 contains a buffer overflow vulnerability in the gamma parameter handling that allows local attackers to crash the application or execute arbitrary code. Attackers can supply an oversized gamma parameter value to overflow the stack buffer and overwrite the...
Crashmail 缓冲区错误漏洞
Crashmail is a mail processing and message exchange software developed by the Crashmail company. Version 1.6 of Crashmail contains a buffer overflow vulnerability, which stems from a stack buffer overflow. This vulnerability could allow remote attackers to execute arbitrary code...
BOCHS 缓冲区错误漏洞
BOCHS is a x86 architecture computer simulator developed by BOCHS company. Version 2.6-5 of BOCHS contains a buffer overflow vulnerability, which stems from a stack buffer overflow. This vulnerability could allow attackers to execute arbitrary code by providing the application with an excessively...