1339 matches found
CVE-2025-15193
A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. This affects the function sub423848 of the file /boafrm/formParentControl. Performing manipulation of the argument submit-url results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and...
CVE-2023-54270
In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...
UBUNTU-CVE-2023-54227
In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix tags leak when shrink nrhwqueues Although we don't need to realloc set-tags when shrink nrhwqueues, we need to free them. Or these tags will be leaked. How to reproduce: 1. mount -t configfs configfs /mnt 2. modprobe...
UBUNTU-CVE-2023-54270
In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...
CVE-2025-15189
A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub464794 of the file /boafrm/formDefRoute. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be us...
CVE-2023-54270
CVE-2023-54270 concerns the Linux kernel media: usb: siano driver and describes use-after-free bugs caused by do_submit_urb. The provided reports show a KASAN UAF in worker_thread with a trace and indicate memory allocation/free paths (smsusb_probe/term_device) involved in probe/driver flow. Conn...
CVE-2023-54270
In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...
CVE-2022-50785
In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...
CVE-2022-50785 fsi: occ: Prevent use after free
In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...
CVE-2022-50785
The CVE-2022-50785 entry describes a Linux kernel use-after-free in fsi: occ where a device could be freed while a file descriptor is open. The root cause and mitigation are specified: use get_device and put_device in open/close functions to keep the device alive while a descriptor is open, and a...
CVE-2022-50785 fsi: occ: Prevent use after free
In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...
PT-2025-54247
Name of the Vulnerable Software and Affected Versions H3C SSL VPN affected versions not specified Description The software contains a user enumeration issue. An attacker can identify valid usernames by submitting different usernames to the /login submit.cgi API endpoint via the txtUsrName POST...
EUVD-2025-205578
A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub464794 of the file /boafrm/formDefRoute. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be us...
CVE-2025-15193
A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. This affects the function sub423848 of the file /boafrm/formParentControl. Performing manipulation of the argument submit-url results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and...
CVE-2025-15193
A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. This affects the function sub423848 of the file /boafrm/formParentControl. Performing manipulation of the argument submit-url results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and...
CVE-2025-15193 D-Link DWR-M920 formParentControl sub_423848 buffer overflow
A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. This affects the function sub423848 of the file /boafrm/formParentControl. Performing manipulation of the argument submit-url results in buffer overflow. The attack is possible to be carried out remotely. The exploit is now public and...
CVE-2025-15193
The CVE-2025-15193 entry details a buffer overflow in D-Link DWR-M920 (firmware ≤ 1.1.50) caused by manipulating the submit-url argument in function sub_423848 of /boafrm/formParentControl. Exploitation can be remote, and public PoCs exist. Affected product is DWR-M920; root cause is improper han...
CVE-2025-15189
A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub464794 of the file /boafrm/formDefRoute. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be us...
CVE-2025-15189
A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub464794 of the file /boafrm/formDefRoute. The manipulation of the argument submit-url leads to buffer overflow. The attack may be initiated remotely. The exploit is publicly available and might be us...
PT-2025-53716
Name of the Vulnerable Software and Affected Versions D-Link DWR-M920 versions up to 1.1.50 Description A flaw exists in D-Link DWR-M920. The issue is related to a buffer overflow in the sub 464794 function within the /boafrm/formDefRoute file. Manipulation of the submit-url argument can trigger...