Vulnérabilités

Aggrégat CVE / GHSA / KEV / OSV — filtrage par étiquette et catégorie.

Filtre actif : Étiquette : buffer-overflow Effacer
ID Titre
CVE-2026-57278 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-57277 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-57276 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-57275 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-57274 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-57273 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-13539 A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the...
A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the...
CVE-2026-13519 A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function...
A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function...
CVE-2026-13518 A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function...
A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function...
CVE-2026-13517 A flaw has been found in Tenda JD12L 16.03.53.23. The impacted element is the function...
A flaw has been found in Tenda JD12L 16.03.53.23. The impacted element is the function...
CVE-2026-47749 stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. Versions prior to master-584-0a7ae07 are vulnerable to...
stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. Versions prior to master-584-0a7ae07 are vulnerable to heap buffer overflow in SHORT_BINUNICODE parsing for PyTorch checkpoint files. The pickle .ckpt pars...
CVE-2026-52720 Vulnérabilité dans CVE-2026-52720 (CVE-2026-52720)
vulnérabilité dans CVE-2026-52720 (CVE-2026-52720). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-34710 Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write...
Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write...
CVE-2026-11824 SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
CVE-2026-11822 SQLite before 3.53.2 Memory Corruption in FTS5 Extension
SQLite before 3.53.2 Memory Corruption in FTS5 Extension
CVE-2026-11503 A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is...
A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is...
CVE-2021-4478 Dräger CC-Vision Basic before 7.5.3 and Dräger CC-Vision E-Cal before 7.2.5.0 contain an out-of...
Dräger CC-Vision Basic before 7.5.3 and Dräger CC-Vision E-Cal before 7.2.5.0 contain an out-of...
CVE-2026-10192 A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function...
A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function...
CVE-2026-10189 A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the...
A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the...
CVE-2026-10191 A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function...
A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function...
CVE-2026-44420 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard (cliprdr) channel b...
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard (cliprdr) channel by sending a CB_CLIP_CAPS PDU with a too-small capabilitySetLength. This can crash the server process...
CVE-2026-42217 Vulnérabilité dans openexr (CVE-2026-42217)
vulnérabilité dans openexr (CVE-2026-42217). L'exploitation peut entraîner la prise de contrôle totale du système. Exploitable via ``ImfIDManifest.cpp``.
CVE-2026-43208 Vulnérabilité dans linux (CVE-2026-43208)
vulnérabilité dans linux (CVE-2026-43208). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-43197 Vulnérabilité dans linux (CVE-2026-43197)
vulnérabilité dans linux (CVE-2026-43197). Des informations confidentielles peuvent être exposées.
CVE-2026-43186 Vulnérabilité dans c (CVE-2026-43186)
vulnérabilité dans c (CVE-2026-43186). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-43185 Vulnérabilité dans linux (CVE-2026-43185)
vulnérabilité dans linux (CVE-2026-43185). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-43125 Écriture hors limites dans linux (CVE-2026-43125)
écriture hors limites dans linux (CVE-2026-43125). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-43114 Vulnérabilité dans c (CVE-2026-43114)
vulnérabilité dans c (CVE-2026-43114). Des informations confidentielles peuvent être exposées.
CVE-2026-43083 Vulnérabilité dans linux (CVE-2026-43083)
vulnérabilité dans linux (CVE-2026-43083). Des informations confidentielles peuvent être exposées.
CVE-2026-43067 Vulnérabilité dans linux (CVE-2026-43067)
vulnérabilité dans linux (CVE-2026-43067). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-24781 Injection de code dans vm2-project (CVE-2026-24781)
injection de code dans vm2-project (CVE-2026-24781). L'exploitation peut entraîner la prise de contrôle totale du système. Exploitable via ``inspect``.
CVE-2026-43038 Vulnérabilité dans linux (CVE-2026-43038)
vulnérabilité dans linux (CVE-2026-43038). L'exploitation peut entraîner la prise de contrôle totale du système.
CVE-2026-31780 In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix u8...
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix u8...
CVE-2026-31772 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix...
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix...
CVE-2026-33317 OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In versions 3.13.0 through 4.10.0, mis...
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In versions 3.13.0 through 4.10.0, missing checks in `entry_get_attribute_value()` in `ta/pkcs11/src/object.c` can lead to out-of-bounds...
CVE-2026-40170 ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buf...
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buffer without bounds checking. When qlog is enabled, a remote peer can send sufficiently large transpo...
CVE-2023-36424 KEV [KEV] Lecture hors limites dans Microsoft windows (CVE-2023-36424)
vulnérabilité dans Microsoft windows (CVE-2023-36424). Risque d'opérations non autorisées ou de divulgation. Inscrit au CISA KEV — exploitation active confirmée.
CVE-2025-53521 KEV [KEV] Vulnérabilité dans F5 big-ip (CVE-2025-53521)
vulnérabilité dans F5 big-ip (CVE-2025-53521). Risque d'opérations non autorisées ou de divulgation. Inscrit au CISA KEV — exploitation active confirmée.
CVE-2020-37208 SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste i...
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash and denial of service.
CVE-2021-43619 Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
CVE-2021-4019 vim is vulnerable to Heap-based Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
CVE-2020-7564 Vulnérabilité dans schneider-electric (CVE-2020-7564)
vulnérabilité dans schneider-electric (CVE-2020-7564). L'exploitation peut entraîner la prise de contrôle totale du système.

🍪 À propos des cookies

Nous utilisons des cookies pour conserver votre session, mémoriser la langue et améliorer le service.

En savoir plus →