buffer-overflow - Security News Tags

HIGH

ABB Ability Camera Connect

CISA ICS Advisories • May 26, 2026

CRITICAL

Siemens RUGGEDCOM APE1808 Devices

CISA ICS Advisories • May 19, 2026

HIGH

TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities

Cisco Talos • May 19, 2026

HIGH

NCSC-2026-0164 [1.00] [M/H] Kwetsbaarheid verholpen in NGINX ngx_http_rewrite_module

NCSC Netherlands • May 18, 2026

HIGH

CVE-2026-44662 rust-openssl: Heap buffer overflow when encrypting with AES key-wrap-with-padding

Microsoft Security Response Center • May 16, 2026

HIGH

CVE-2026-6637 PostgreSQL refint allows stack buffer overflow and SQL injection

Microsoft Security Response Center • May 16, 2026

HIGH

CVE-2026-44673 libyang: lyb_read_string() integer overflow → heap buffer overflow

Microsoft Security Response Center • May 16, 2026

CRITICAL

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

The Hacker News • May 14, 2026

HIGH

Chipmaker Patch Tuesday: Intel and AMD Patch 70 Vulnerabilities

SecurityWeek • May 13, 2026

CRITICAL

Patch Tuesday - May 2026

Rapid7 Research • May 13, 2026

MEDIUM

CVE-2026-45130 Vim: Heap Buffer Overflow in spell file loading

Microsoft Security Response Center • May 10, 2026

HIGH

CVE-2026-6665 PgBouncer buffer overflow in SCRAM

Microsoft Security Response Center • May 10, 2026

HIGH

CVE-2026-6664 PgBouncer integer overflow in PgBouncer network packet parsing

Microsoft Security Response Center • May 10, 2026

CRITICAL

State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls

Help Net Security • May 07, 2026

CRITICAL

PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage

The Hacker News • May 07, 2026

CRITICAL

Critical Palo Alto Networks software bug hits exposed firewalls

CSO Online • May 07, 2026

CRITICAL

Palo Alto Networks firewall zero-day exploited for nearly a month

BleepingComputer • May 07, 2026

HIGH

Critical Buffer Overflow in Palo Alto Networks PAN-OS User-ID Authentication Portal (CVE-2026-0300)

Rapid7 Research • May 06, 2026

HIGH

2026-006: Critical Vulnerability in PAN-OS

CERT-EU • May 06, 2026

CRITICAL

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

The Hacker News • May 06, 2026

HIGH

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls

SecurityWeek • May 06, 2026

MEDIUM

CVE-2026-40170 ngtcp2 has a qlog transport parameter serialization stack buffer overflow

Microsoft Security Response Center • May 05, 2026

MEDIUM

[webapps] GeographicLib v2.5.1 - stack buffer overflow

Exploit-DB • Apr 29, 2026

MEDIUM

CVE-2026-41676 rust-openssl: Deriver::derive and PkeyCtxRef::derive can overflow short buffers on OpenSSL 1.1.1

Microsoft Security Response Center • Apr 26, 2026

MEDIUM

CVE-2026-31449 ext4: validate p_idx bounds in ext4_ext_correct_indexes

Microsoft Security Response Center • Apr 23, 2026

MEDIUM

CVE-2026-31505 iavf: fix out-of-bounds writes in iavf_get_ethtool_stats()

Microsoft Security Response Center • Apr 23, 2026

MEDIUM

CVE-2026-34267

Microsoft Security Response Center • Apr 23, 2026

MEDIUM

CVE-2026-27820 zlib: Buffer Overflow in Zlib::GzipReader ungetc via large input leads to memory corruption

Microsoft Security Response Center • Apr 23, 2026

HIGH

NCSC-2026-0125 [1.00] [M/H] Kwetsbaarheden verholpen in Oracle Enterprise Manager

NCSC Netherlands • Apr 22, 2026

HIGH

Hardy Barth Salia EV Charge Controller

CISA ICS Advisories • Apr 21, 2026

MEDIUM

CVE-2025-66215 OpenSC: Stack-buffer-overflow WRITE in card-oberthur

Microsoft Security Response Center • Apr 09, 2026

MEDIUM

CVE-2025-49010 OpenSC: Stack-buffer-overflow WRITE in GET RESPONSE

Microsoft Security Response Center • Apr 09, 2026

MEDIUM

CVE-2026-21714

Microsoft Security Response Center • Apr 09, 2026

MEDIUM

CVE-2025-66037 OpenSC: Out of Bounds vulnerability

Microsoft Security Response Center • Apr 09, 2026

MEDIUM

CVE-2026-4739 Integer overflow vulnerabilities in InsightSoftwareConsortium/ITK

Microsoft Security Response Center • Apr 15, 2026

HIGH

CVE-2026-5772 MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation

Microsoft Security Response Center • Apr 15, 2026

HIGH

CVE-2026-5295 Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_DecryptOri() via Oversized OID

Microsoft Security Response Center • Apr 15, 2026

MEDIUM

CVE-2026-39979 jq: Out-of-Bounds Read in jv_parse_sized() Error Formatting for Non-NUL-Terminated Counted Buffers

Microsoft Security Response Center • Apr 17, 2026

HIGH

Heap-based buffer overflow in oftpd daemon

Fortinet PSIRT • Apr 14, 2026

HIGH

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA Alerts • Mar 20, 2026

CRITICAL

Telnet vulnerability opens door to remote code execution as root

CSO Online • Mar 19, 2026

CRITICAL

CVE-2026-32746 GNU telnetd Buffer Overflow PoC - Critical (9.8)

Reddit r/netsec • Mar 19, 2026

CRITICAL

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

The Hacker News • Mar 18, 2026

HIGH

Buffer overflow via fgtupdates service

Fortinet PSIRT • Mar 10, 2026

HIGH

Buffer Overflow in LLDP OUI field

Fortinet PSIRT • Mar 10, 2026

MEDIUM

[webapps] Easy File Sharing Web Server v7.2 - Buffer Overflow

Exploit-DB • Mar 03, 2026

MEDIUM

[local] glibc 2.38 - Buffer Overflow

Exploit-DB • Feb 11, 2026

HIGH

USN-8004-1: FreeRDP vulnerabilities

Ubuntu Security • Feb 03, 2026

MEDIUM

VU#271649: Stack-based buffer overflow in libtasn1 versions v4.20.0 and earlier

CERT/CC • Jan 20, 2026

MEDIUM

VU#481830: Libheif uncompressed codec lacks bounds check leading to application crash

CERT/CC • Jan 20, 2026

CRITICAL

Ancient telnet bug happily hands out root to attackers

The Register Security • Jan 22, 2026

CRITICAL

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog

The Hacker News • Jan 24, 2026

HIGH

OpenSSL January 2026 Security Update: CMS and PKCS#12 Buffer Overflows

Reddit r/netsec • Jan 27, 2026

HIGH

CVE-2026-1284: An Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawin...

NIST NVD • Jan 26, 2026

HIGH

CVE-2026-1283: A Heap-based Buffer Overflow vulnerability affecting the EPRT file reading procedure in SOLIDWORKS e...

NIST NVD • Jan 26, 2026

HIGH

CVE-2025-27821: Out-of-bounds Write vulnerability in Apache Hadoop HDFS native client. This issue affects Apache Ha...

NIST NVD • Jan 26, 2026

HIGH

CVE-2026-1425: A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the fu...

NIST NVD • Jan 26, 2026

HIGH

CVE-2026-1420: A flaw has been found in Tenda AC23 16.03.07.52. This impacts an unknown function of the file /gofor...

NIST NVD • Jan 26, 2026

MEDIUM

CVE-2026-1418: A security vulnerability has been detected in GPAC up to 2.4.0. This affects the function gf_text_im...

NIST NVD • Jan 26, 2026

MEDIUM

CVE-2026-23011: In the Linux kernel, the following vulnerability has been resolved: ipv4: ip_gre: make ipgre_header...

NIST NVD • Jan 25, 2026