Total
286780 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-30597 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 6.5 Medium |
| Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security parameter of the formWifiBasicSet function. | ||||
| CVE-2025-27496 | 2025-03-13 | 3.3 Low | ||
| Snowflake, a platform for using artificial intelligence in the context of cloud computing, has a vulnerability in the Snowflake JDBC driver ("Driver") in versions 3.0.13 through 3.23.0 of the driver. When the logging level was set to DEBUG, the Driver would log locally the client-side encryption master key of the target stage during the execution of GET/PUT commands. This key by itself does not grant access to any sensitive data without additional access authorizations, and is not logged server-side by Snowflake. Snowflake fixed the issue in version 3.23.1. | ||||
| CVE-2024-30598 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 6.5 Medium |
| Tenda FH1203 v2.0.1.6 firmware has a stack overflow vulnerability in the security_5g parameter of the formWifiBasicSet function. | ||||
| CVE-2024-30599 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 8.8 High |
| Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the deviceMac parameter of the addWifiMacFilter function. | ||||
| CVE-2024-30600 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 8.0 High |
| Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedEndTime parameter of the setSchedWifi function. | ||||
| CVE-2024-30601 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 8.0 High |
| Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the time parameter of the saveParentControlInfo function. | ||||
| CVE-2024-30602 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 9.8 Critical |
| Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the schedStartTime parameter of the setSchedWifi function. | ||||
| CVE-2024-30603 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 6.5 Medium |
| Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the urls parameter of the saveParentControlInfo function. | ||||
| CVE-2024-30604 | 1 Tenda | 2 Fh1203, Fh1203 Firmware | 2025-03-13 | 7.5 High |
| Tenda FH1203 v2.0.1.6 has a stack overflow vulnerability in the list1 parameter of the fromDhcpListClient function. | ||||
| CVE-2024-28547 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-03-13 | 6.5 Medium |
| Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the firewallEn parameter of formSetFirewallCfg function. | ||||
| CVE-2024-28537 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-03-13 | 9.8 Critical |
| Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the page parameter of fromNatStaticSetting function. | ||||
| CVE-2024-28550 | 1 Tenda | 2 Ac18, Ac18 Firmware | 2025-03-13 | 4.3 Medium |
| Tenda AC18 V15.03.05.05 has a stack overflow vulnerability in the filePath parameter of formExpandDlnaFile function. | ||||
| CVE-2024-34043 | 1 O-ran | 1 Ricapp Kpimon Go | 2025-03-13 | 5.3 Medium |
| O-RAN RICAPP kpimon-go I-Release has a segmentation violation via a certain E2AP-PDU message. | ||||
| CVE-2024-8402 | 1 Gitlab | 1 Gitlab | 2025-03-13 | 3.7 Low |
| An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. An input validation issue in the Google Cloud IAM integration feature could have enabled a Maintainer to introduce malicious code. | ||||
| CVE-2025-25175 | 2025-03-13 | 7.8 High | ||
| A vulnerability has been identified in Simcenter Femap V2401 (All versions < V2401.0003), Simcenter Femap V2406 (All versions < V2406.0002). The affected application contains a memory corruption vulnerability while parsing specially crafted .NEU files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-25443) | ||||
| CVE-2025-29994 | 2025-03-13 | N/A | ||
| This vulnerability exists in the CAP back office application due to improper authentication check at the API endpoint. An unauthenticated remote attacker with a valid login ID could exploit this vulnerability by manipulating API input parameters through API request URL/payload leading to unauthorized access to other user accounts. | ||||
| CVE-2025-29995 | 2025-03-13 | N/A | ||
| This vulnerability exists in the CAP back office application due to a weak password-reset mechanism implemented at API endpoints. An authenticated remote attacker with a valid login ID could exploit this vulnerability through vulnerable API endpoint which could lead to account takeover of targeted users. | ||||
| CVE-2024-26630 | 2 Linux, Redhat | 2 Linux Kernel, Enterprise Linux | 2025-03-13 | 7.1 High |
| In the Linux kernel, the following vulnerability has been resolved: mm: cachestat: fix folio read-after-free in cache walk In cachestat, we access the folio from the page cache's xarray to compute its page offset, and check for its dirty and writeback flags. However, we do not hold a reference to the folio before performing these actions, which means the folio can concurrently be released and reused as another folio/page/slab. Get around this altogether by just using xarray's existing machinery for the folio page offsets and dirty/writeback states. This changes behavior for tmpfs files to now always report zeroes in their dirty and writeback counters. This is okay as tmpfs doesn't follow conventional writeback cache behavior: its pages get "cleaned" during swapout, after which they're no longer resident etc. | ||||
| CVE-2025-1433 | 2025-03-13 | 7.8 High | ||
| A maliciously crafted MODEL file, when parsed through Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process. | ||||
| CVE-2024-28383 | 1 Tenda | 2 Ax12, Ax12 Firmware | 2025-03-13 | 9.8 Critical |
| Tenda AX12 v1.0 v22.03.01.16 was discovered to contain a stack overflow via the ssid parameter in the sub_431CF0 function. | ||||