Lucene search
K

10 matches found

EUVD
EUVD
added 2026/06/19 12:0 a.m.9 views

EUVD-2025-210287

Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntryGetDataSize can return success while leaving the reported data size as 0. This causes a caller to make a 1-byte allocation. Later, CopyPixels computes copysize = stride absroiheight but does not check the...

6AI score0.00823EPSS
Exploits1References1
CVE
CVE
added 2026/03/19 9:56 p.m.13 views

CVE-2026-30872

OpenWrt OpenWrt mdns vulnerability CVE-2026-30872 affects versions prior to 24.10.6 and 25.12.1. The issue lies in the mdns daemon’s match_ipv6_addresses function, where a domain name copied into a 256-byte stack buffer via strcpy is followed by extracting a reverse IPv6 PTR query into a 46-byte ...

9.8CVSS6.3AI score0.02221EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2026/02/06 11:15 p.m.8 views

CVE-2026-25749

Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution logic when processing the 'helpfile' option. The vulnerability is located in the gettagfname function in src/tag.c. When processing help file tags,...

6.6CVSS6AI score0.00213EPSS
Exploits1References4
OSV
OSV
added 2026/02/06 10:43 p.m.5 views

CVE-2026-25749 Heap Overflow in Vim

Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution logic when processing the 'helpfile' option. The vulnerability is located in the gettagfname function in src/tag.c. When processing help file tags,...

6.6CVSS5.5AI score0.00213EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/08/22 4:35 p.m.7 views

CVE-2011-10021

Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...

8.4CVSS8.3AI score0.00322EPSS
Exploits0References1
CVE
CVE
added 2025/08/08 6:9 p.m.16 views

CVE-2012-10043

ActFax Server 4.32 is affected by a stack-based buffer overflow in the Import Users from File function. The root cause is improper validation of the length of tab-delimited fields in .exp files, causing unsafe usage of strcpy() during CSV parsing. An attacker can compromise the system by crafting...

9.3CVSS7.2AI score0.00326EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/12/26 12:0 a.m.7 views

PT-2024-10258 · Linksys · Linksys E8450

Name of the Vulnerable Software and Affected Versions: Linksys E8450 version 1.2.00.360516 Description: A buffer overflow issue was discovered, where the lan ipaddr field is copied to the stack without length verification. This could allow a remote attacker to cause a denial of service. The...

5.5CVSS7.7AI score0.00417EPSS
Exploits1References5
OSV
OSV
added 2024/04/03 3:15 a.m.2 views

UBUNTU-CVE-2024-28219

In imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy...

6.7CVSS7AI score0.00989EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/04/20 12:0 a.m.7 views

The vulnerability of the lou_setDataPath function in the opileTranslationTable.c file of the Liblouis translator, which allows a hacker to trigger a service failure.

The vulnerability of the lousetDataPath function in ompileTranslationTable.c in the Liblouis translator is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.8CVSS7.2AI score0.01345EPSS
Exploits1References14Affected Software10
BDU FSTEC
BDU FSTEC
added 2019/10/02 12:0 a.m.4 views

The vulnerability of the my_parse_cookie function in the web server of the MOXA EDR-810 industrial router allows a hacker to execute arbitrary code.

The vulnerability of the myparsecookie function offset 0x1B014 on the web server jffs2-root\fs1\magicP\WebServer\webs of the MOXA EDR-810 industrial router arises due to the lack of checks on the size of the data being copied into a buffer of 0x40 bytes. Exploiting this vulnerability allows an...

9.6CVSS6.3AI score
Exploits0References1Affected Software1
Rows per page
Query Builder