CVE-2026-54410

nanoMODBUS (through v1.23.0) contains an off-by-one buffer overflow in the recv_msg_header() of the Modbus/TCP server. An unauthenticated remote attacker can craft an MBAP Length=255 to force writing one attacker-controlled byte past the 260-byte receive buffer, corrupting the adjacent state stru...

ALSA-2026:18683 Moderate: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: Double Free Vulnerability in libssh Key Export Functions CVE-2025-5351 libssh: Use of uninitialized variable in privatekeyfromfile CVE-2025-4878 libssh: Write...

RHEL 9 : libssh (RHSA-2026:18683)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:18683 advisory. libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh:...

CVE-2023-31365

An integer overflow in the SMU could allow a privileged attacker to potentially write memory beyond the end of the reserved dRAM area resulting in loss of integrity or availability...

CVE-2023-31365

CVE-2023-31365 describes an integer overflow in the System Management Unit (SMU) that could allow a privileged, local attacker to write memory beyond the end of the reserved dRAM area, potentially causing loss of integrity or availability. CVSS3.1 metrics from AMD indicate a Low base score (3.9) ...

Security update for libssh

This update for libssh fixes the following issues: CVE-2025-5318: Fixed likely read beyond bounds in sftp server handle management bsc1245311. CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in...

SUSE-SU-2025:02229-1 Security update for libssh

This update for libssh fixes the following issues: - CVE-2025-5318: Fixed likely read beyond bounds in sftp server handle management bsc1245311. - CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. - CVE-2025-4878: Fixed use of uninitialized variable in...

The vulnerability in macOS operating systems arises from the operation of writing data beyond the buffer in memory, allowing an attacker to read arbitrary files.

The vulnerability of macOS operating systems lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability allows an attacker to read arbitrary files...

The vulnerability of the Simcenter Femap simulation application, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Simcenter Femap simulation application lies in the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created Catia MODEL file...

The software’s vulnerability related to creating secure connections to corporate networks via SSL VPN SecuExtender SSL VPN Client. This vulnerability stems from data writing beyond the buffer in memory, allowing attackers to exploit their privileges.

The vulnerability of the software for creating secure connections to corporate networks via SSL VPN SecuExtender SSL VPN Client lies in the writing of data beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to enhance their privileges...

The vulnerability in the Firefox web browser, related to writing beyond the buffer, allows attackers to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability in the Firefox web browser is related to writing beyond the buffer limit. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service interruptions...

CVE-2023-27908

A maliciously crafted DLL file can be forced to write beyond allocated boundaries in the Autodesk installer when parsing the DLL files and could lead to a Privilege Escalation vulnerability...

Information disclosure

NVIDIA DGX-2 SBIOS contains a vulnerability in Bds, where a user with high privileges can cause a write beyond the bounds of an indexable resource, which may lead to code execution, denial of service, compromised integrity, and information disclosure...

CVE-2023-0201

NVIDIA DGX-2 SBIOS contains a vulnerability in Bds, where a user with high privileges can cause a write beyond the bounds of an indexable resource, which may lead to code execution, denial of service, compromised integrity, and information disclosure...

PT-2023-16080 · Nvidia · Nvidia Dgx-2 Sbios

Name of the Vulnerable Software and Affected Versions: NVIDIA DGX-2 SBIOS affected versions not specified Description: The issue is related to a vulnerability in Bds, where a user with high privileges can cause a write beyond the bounds of an indexable resource. This may lead to code execution,...

CVE-2023-20523

TOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leading to a loss of integrity or denial of service...

PT-2022-7153 · Autodesk · Autodesk Installer

Name of the Vulnerable Software and Affected Versions: Autodesk Installer affected versions not specified Description: The issue is related to a maliciously crafted DLL file that can be forced to write beyond allocated boundaries when the Autodesk installer parses the DLL files. This could lead t...

Mageia: Security Advisory (MGASA-2022-0105)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

mod_sed: Read/write beyond bounds

...

Vulnerability of Firefox web browsers, Firefox ESR, and Thunderbird email client, related to a numerical overflow condition, allowing an attacker to perform write-offs beyond the buffer in memory.

The vulnerability in web browsers Firefox, Firefox ESR, and the email client Thunderbird is related to a numerical overflow vulnerability. Exploiting this vulnerability allows an attacker to perform write-offs beyond the buffer in memory...