CVE-2026-45542

ESF-IDF (Espressif IoT Development Framework) versions 5.2.6, 5.3.5, 5.4.4, 5.5.4, and 6.0 suffer a heap buffer overflow in protocomm Security Scheme 2 (SRP6a) during session setup. The handle_session_command0() path copies a client-provided SRP6a username field into a smaller destination buffer,...

CVE-2025-40798

A vulnerability has been identified in SIMATIC PCS neo V4.1 All versions, SIMATIC PCS neo V5.0 All versions, SIMATIC PCS neo V6.0 All versions, User Management Component UMC All versions V2.15.1.3. Affected products contain a out-of-bounds read vulnerability in the integrated UMC component. This...

BootBox Bootbox.js Security Vulnerability

BootBox Bootbox.js is an alert, confirmation, and prompt dialog box for the Bootstrap framework from BootBox, Inc. A security vulnerability in BootBox Bootbox.js versions v.3.2 through v.6.0 stems from the presence of a cross-site scripting vulnerability that could allow a remote attacker to...

OnApp CVE-2019-12491 Command Execution Vulnerability

Description OnApp is prone to a remote command-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary commands with root privileges in the context of the affected server. OnApp versions 5.0 prior to 5.0.0-88, 5.1 through 5.4, 5.5 prior to 5.5.0-93,...