8 matches found
CVE-2026-25727
time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input is provided to any type that parses with the RFC 2822 format, a denial of service attack via stack exhaustion is possible. The attack relies on formally deprecated and rarely-used features that are...
CVE-2025-66555
AirKeyboard iOS App 1.0.5 contains a missing authentication vulnerability that allows unauthenticated attackers to type arbitrary keystrokes directly into the victim's iOS device in real-time without user interaction, resulting in full remote input control...
PT-2025-49138
Name of the Vulnerable Software and Affected Versions AirKeyboard iOS App version 1.0.5 Description The AirKeyboard iOS App has a missing authentication mechanism. This allows unauthenticated attackers to send arbitrary keystrokes to a victim’s iOS device in real-time, without requiring user...
Tenda AC6 安全漏洞
Tenda AC6 is a dual-band wireless router from Tenda. Tenda AC6 suffers from a buffer overflow vulnerability, which originates from the failure of the time parameter in the SetSysTimeCfg function to correctly validate the length and size of the input data, which can be exploited by an attacker to...
The vulnerability of the NTPSyncWithHost() function in TOTOLINK LR350 router microprogramming software allows a hacker to execute arbitrary commands.
The vulnerability of the NTPSyncWithHost function in TOTOLINK LR350 router microprogramming devices is related to the lack of measures for cleaning incoming data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands through the hosttime parameter...
CVE-2023-43646
get-func-name is a module to retrieve a function's name securely and consistently both in NodeJS and the browser. Versions prior to 2.0.1 are subject to a regular expression denial of service redos vulnerability which may lead to a denial of service when parsing malicious input. This vulnerabilit...
Tenda AC1206 缓冲区错误漏洞
The AC1206 is a high performance router designed with Gigabit ports for both WAN and LAN ports. A buffer overflow vulnerability exists in the Tenda AC1206 firmware version USAC1206V1.0RTLV15.03.06.23multiTD01, which originates from the /bin/httpd file /goform/openSchedWifi in the function scheden...
The vulnerability of the Linux operating system, which allows a malicious individual to trigger a local service failure
In the HID driver for various Logitech devices, there is no mechanism for cleaning the entered information in real-time. This leads to a local failure in service provision...