Total
10481 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-43863 | 1 Dlink | 2 Dir-619l, Dir-619l Firmware | 2023-09-29 | N/A | 7.5 HIGH |
| D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanDhcpplus function. | |||||
| CVE-2023-43862 | 1 Dlink | 2 Dir-619l, Dir-619l Firmware | 2023-09-29 | N/A | 7.5 HIGH |
| D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formLanguageChange function. | |||||
| CVE-2023-43861 | 1 Dlink | 2 Dir-619l, Dir-619l Firmware | 2023-09-29 | N/A | 7.5 HIGH |
| D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanPPPoE function. | |||||
| CVE-2023-43860 | 1 Dlink | 2 Dir-619l, Dir-619l Firmware | 2023-09-29 | N/A | 7.5 HIGH |
| D-Link DIR-619L B1 2.02 is vulnerable to Buffer Overflow via formSetWanNonLogin function. | |||||
| CVE-2019-14814 | 6 Canonical, Debian, Linux and 3 more | 50 Ubuntu Linux, Debian Linux, Linux Kernel and 47 more | 2023-09-28 | 7.2 HIGH | 7.8 HIGH |
| There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code. | |||||
| CVE-2023-41307 | 1 Huawei | 2 Emui, Harmonyos | 2023-09-28 | N/A | 7.5 HIGH |
| Memory overwriting vulnerability in the security module. Successful exploitation of this vulnerability may affect availability. | |||||
| CVE-2023-32653 | 1 Accusoft | 1 Imagegear | 2023-09-26 | N/A | 8.8 HIGH |
| An out-of-bounds write vulnerability exists in the dcm_pixel_data_decode functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability. | |||||
| CVE-2023-32614 | 1 Accusoft | 1 Imagegear | 2023-09-26 | N/A | 9.8 CRITICAL |
| A heap-based buffer overflow vulnerability exists in the create_png_object functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2023-43338 | 1 Cesanta | 1 Mjs | 2023-09-26 | N/A | 9.8 CRITICAL |
| Cesanta mjs v2.20.0 was discovered to contain a function pointer hijacking vulnerability via the function mjs_get_ptr(). This vulnerability allows attackers to execute arbitrary code via a crafted input. | |||||
| CVE-2020-18652 | 1 Exempi Project | 1 Exempi | 2023-09-26 | N/A | 6.5 MEDIUM |
| Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file. | |||||
| CVE-2020-18651 | 1 Exempi Project | 1 Exempi | 2023-09-26 | N/A | 6.5 MEDIUM |
| Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file with ID3V2 frame. | |||||
| CVE-2023-40163 | 1 Accusoft | 1 Imagegear | 2023-09-25 | N/A | 9.8 CRITICAL |
| An out-of-bounds write vulnerability exists in the allocate_buffer_for_jpeg_decoding functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2023-32284 | 1 Accusoft | 1 Imagegear | 2023-09-25 | N/A | 9.8 CRITICAL |
| An out-of-bounds write vulnerability exists in the tiff_planar_adobe functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2023-28393 | 1 Accusoft | 1 Imagegear | 2023-09-25 | N/A | 8.8 HIGH |
| A stack-based buffer overflow vulnerability exists in the tif_processing_dng_channel_count functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2023-23567 | 1 Accusoft | 1 Imagegear | 2023-09-25 | N/A | 8.8 HIGH |
| A heap-based buffer overflow vulnerability exists in the CreateDIBfromPict functionality of Accusoft ImageGear 20.1. A specially crafted file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2023-5068 | 1 Deltaww | 1 Diascreen | 2023-09-25 | N/A | 7.8 HIGH |
| Delta Electronics DIAScreen may write past the end of an allocated buffer while parsing a specially crafted input file. This could allow an attacker to execute code in the context of the current process. | |||||
| CVE-2020-21890 | 1 Artifex | 1 Ghostscript | 2023-09-25 | N/A | 7.8 HIGH |
| Buffer Overflow vulnerability in clj_media_size function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attackers to cause a denial of service or other unspecified impact(s) via opening of crafted PDF document. | |||||
| CVE-2019-9017 | 1 Solarwinds | 1 Dameware Mini Remote Control | 2023-09-25 | 5.0 MEDIUM | 7.5 HIGH |
| DWRCC in SolarWinds DameWare Mini Remote Control 10.0 x64 has a Buffer Overflow associated with the size field for the machine name. | |||||
| CVE-2023-2262 | 1 Rockwellautomation | 66 1756-en2f Series A, 1756-en2f Series A Firmware, 1756-en2f Series B and 63 more | 2023-09-22 | N/A | 9.8 CRITICAL |
| A buffer overflow vulnerability exists in the Rockwell Automation select 1756-EN* communication devices. If exploited, a threat actor could potentially leverage this vulnerability to perform a remote code execution. To exploit this vulnerability, a threat actor would have to send a maliciously crafted CIP request to device. | |||||
| CVE-2023-25528 | 1 Nvidia | 2 Dgx H100, Dgx H100 Firmware | 2023-09-22 | N/A | 9.8 CRITICAL |
| NVIDIA DGX H100 baseboard management controller (BMC) contains a vulnerability in a web server plugin, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial of service, information disclosure, and data tampering. | |||||