Total
3900 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-3077 | 1 Linux | 1 Linux Kernel | 2025-06-27 | N/A | 5.5 MEDIUM |
|
A buffer overflow vulnerability was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way it handled the I2C_SMBUS_BLOCK_PROC_CALL case (via the ioctl I2C_SMBUS) with malicious input data. This flaw could allow a local user to crash the system.
|
|||||
| CVE-2025-6568 | 1 Totolink | 2 Ex1200t, Ex1200t Firmware | 2025-06-27 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. Affected is an unknown function of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-6128 | 1 Totolink | 2 Ex1200t, Ex1200t Firmware | 2025-06-27 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability classified as critical has been found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. This affects an unknown part of the file /boafrm/formWirelessTbl of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-6336 | 1 Totolink | 2 Ex1200t, Ex1200t Firmware | 2025-06-26 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. It has been classified as critical. Affected is an unknown function of the file /boafrm/formTmultiAP of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-6137 | 1 Totolink | 2 T10, T10 Firmware | 2025-06-26 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability classified as critical has been found in TOTOLINK T10 4.1.8cu.5207. Affected is the function setWiFiScheduleCfg of the file /cgi-bin/cstecgi.cgi of the component HTTP POST Request Handler. The manipulation of the argument desc leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2022-28463 | 2 Debian, Imagemagick | 2 Debian Linux, Imagemagick | 2025-06-25 | 6.8 MEDIUM | 7.8 HIGH |
|
ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.
|
|||||
| CVE-2022-26490 | 4 Debian, Fedoraproject, Linux and 1 more | 19 Debian Linux, Fedora, Linux Kernel and 16 more | 2025-06-25 | 4.6 MEDIUM | 7.8 HIGH |
|
st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters.
|
|||||
| CVE-2025-6402 | 1 Totolink | 2 X15, X15 Firmware | 2025-06-25 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability was found in TOTOLINK X15 1.0.0-B20230714.1105. It has been declared as critical. This vulnerability affects unknown code of the file /boafrm/formIpv6Setup of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-6400 | 1 Totolink | 2 N300rh, N300rh Firmware | 2025-06-25 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability was found in TOTOLINK N300RH 6.1c.1390_B20191101 and classified as critical. Affected by this issue is some unknown functionality of the file /boafrm/formPortFw of the component HTTP POST Message Handler. The manipulation of the argument service_type leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-6399 | 1 Totolink | 2 X15, X15 Firmware | 2025-06-25 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability, which was classified as critical, was found in TOTOLINK X15 1.0.0-B20230714.1105. Affected is an unknown function of the file /boafrm/formIPv6Addr of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2024-24474 | 1 Qemu | 1 Qemu | 2025-06-25 | N/A | 8.8 HIGH |
|
QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. This occurs in esp_do_nodma in hw/scsi/esp.c because of an underflow of async_len.
|
|||||
| CVE-2025-29632 | 1 Free5gc | 1 Free5gc | 2025-06-25 | N/A | 5.4 MEDIUM |
|
Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a remote attacker to cause a denial of service via the AMF, NGAP, security.go, handler_generated.go, handleInitialUEMessageMain, DecodePlainNasNoIntegrityCheck, GetSecurityHeaderType components
|
|||||
| CVE-2019-16536 | 1 Clickhouse | 1 Clickhouse | 2025-06-25 | N/A | 8.8 HIGH |
|
Stack overflow leading to DoS can be triggered by a malicious authenticated client in Clickhouse before 19.14.3.3.
|
|||||
| CVE-2025-4161 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability classified as critical has been found in PCMan FTP Server up to 2.0.7. This affects an unknown part of the component VERBOSE Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5634 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. This affects an unknown part of the component NOOP Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5636 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7. This issue affects some unknown processing of the component SET Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5637 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability, which was classified as critical, was found in PCMan FTP Server 2.0.7. Affected is an unknown function of the component SYSTEM Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-4162 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability classified as critical was found in PCMan FTP Server up to 2.0.7. This vulnerability affects unknown code of the component ASCII Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-4160 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in PCMan FTP Server up to 2.0.7. It has been rated as critical. Affected by this issue is some unknown functionality of the component LS Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-4159 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in PCMan FTP Server up to 2.0.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component GLOB Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-4158 | 1 Pcman | 1 Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in PCMan FTP Server up to 2.0.7. It has been classified as critical. Affected is an unknown function of the component PROMPT Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2024-25254 | 1 Mcafee | 1 Superscan | 2025-06-24 | N/A | 9.8 CRITICAL |
|
SuperScan v4.1 was discovered to contain a buffer overflow via the Hostname/IP parameter.
|
|||||
| CVE-2025-5667 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component REIN Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5666 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component XMKD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5665 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is an unknown function of the component XCWD Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5664 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0 and classified as critical. This issue affects some unknown processing of the component RESTART Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5596 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is an unknown function of the component REGET Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5595 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0 and classified as critical. This issue affects some unknown processing of the component PROGRESS Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5551 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. This affects an unknown part of the component SYSTEM Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5550 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0 and classified as critical. Affected by this issue is some unknown functionality of the component PBSZ Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5549 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability has been found in FreeFloat FTP Server 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component PASV Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5548 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability, which was classified as critical, was found in FreeFloat FTP Server 1.0. Affected is an unknown function of the component NOOP Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5547 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability, which was classified as critical, has been found in FreeFloat FTP Server 1.0. This issue affects some unknown processing of the component CDUP Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5356 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0. It has been classified as critical. Affected is an unknown function of the component BYE Command Handler. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5295 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability classified as critical was found in FreeFloat FTP Server 1.0.0. This vulnerability affects unknown code of the component PORT Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5221 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability was found in FreeFloat FTP Server 1.0.0. It has been classified as critical. This affects an unknown part of the component QUOTE Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2025-5112 | 1 Freefloat | 1 Freefloat Ftp Server | 2025-06-24 | 7.5 HIGH | 7.3 HIGH |
|
A vulnerability, which was classified as critical, was found in FreeFloat FTP Server 1.0. This affects an unknown part of the component MGET Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||
| CVE-2024-40494 | 1 Keith-cullen | 1 Freecoap | 2025-06-24 | N/A | 9.8 CRITICAL |
|
Buffer Overflow in coap_msg.c in FreeCoAP allows remote attackers to execute arbitrary code or cause a denial of service (stack buffer overflow) via a crafted packet.
|
|||||
| CVE-2024-46478 | 1 Htmldoc Project | 1 Htmldoc | 2025-06-24 | N/A | 9.8 CRITICAL |
|
HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.
|
|||||
| CVE-2025-6143 | 1 Totolink | 2 Ex1200t, Ex1200t Firmware | 2025-06-23 | 9.0 HIGH | 8.8 HIGH |
|
A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4.1.2cu.5232_B20210713. Affected is an unknown function of the file /boafrm/formNtp of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
|
|||||