Search Results (46531 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-3209 2 Fedoraproject, Upx 2 Fedora, Upx 2025-04-25 5.5 Medium
A vulnerability was found in UPX up to 4.2.2. It has been rated as critical. This issue affects the function get_ne64 of the file bele.h. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-259055. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2022-4111 1 Tooljet 1 Tooljet 2025-04-24 6.5 Medium
Unrestricted file size limit can lead to DoS in tooljet/tooljet <1.27 by allowing a logged in attacker to upload profile pictures over 2MB.
CVE-2022-3270 1 Festo 198 Bus Module Cpx-e-ep, Bus Module Cpx-e-ep Firmware, Bus Node Cpx-fb32 and 195 more 2025-04-24 9.8 Critical
In multiple products by Festo a remote unauthenticated attacker could use functions of an undocumented protocol which could lead to a complete loss of confidentiality, integrity and availability.
CVE-2022-45648 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the devName parameter in the formSetDeviceName function.
CVE-2022-45672 1 Tenda 2 I22, I22 Firmware 2025-04-24 7.5 High
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the formWx3AuthorizeSet function.
CVE-2022-45671 1 Tenda 2 I22, I22 Firmware 2025-04-24 7.5 High
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the appData parameter in the formSetAppFilterRule function.
CVE-2022-45670 1 Tenda 2 I22, I22 Firmware 2025-04-24 7.5 High
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the ping1 parameter in the formSetAutoPing function.
CVE-2022-45669 1 Tenda 2 I22, I22 Firmware 2025-04-24 7.5 High
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterGet function.
CVE-2022-45664 1 Tenda 2 I22, I22 Firmware 2025-04-24 7.5 High
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDget function.
CVE-2022-45663 1 Tenda 2 I22, I22 Firmware 2025-04-24 7.5 High
Tenda i22 V1.0.0.3(4687) was discovered to contain a buffer overflow via the index parameter in the formWifiMacFilterSet function.
CVE-2022-45661 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the setSmartPowerManagement function.
CVE-2022-45660 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedStartTime parameter in the setSchedWifi function.
CVE-2022-45659 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the wpapsk_crypto parameter in the fromSetWirelessRepeat function.
CVE-2022-45658 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the schedEndTime parameter in the setSchedWifi function.
CVE-2022-45657 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the fromSetIpMacBind function.
CVE-2022-45650 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the firewallEn parameter in the formSetFirewallCfg function.
CVE-2022-45649 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the endIp parameter in the formSetPPTPServer function.
CVE-2024-20810 1 Samsung 1 Android 2025-04-24 3.3 Low
Implicit intent hijacking vulnerability in Smart Suggestions prior to SMR Feb-2024 Release 1 allows local attackers to get sensitive information.
CVE-2024-54938 1 Lopalopa 1 E-learning Management System 2025-04-24 7.5 High
A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/uploads.
CVE-2022-45645 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceMac parameter in the addWifiMacFilter function.