|
571
|
9.1 |
CRITICAL
Network
|
bacnetstack
|
bacnet_stack
|
BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's WritePropertyMultiple service decoder allows …
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2026-41475
|
2026-04-29 00:36 |
2026-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
572
|
7.5 |
HIGH
Network
|
bacnetstack
|
bacnet_stack
|
BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an off-by-one out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service decod…
Update
|
CWE-125
CWE-193
Out-of-bounds Read
Off-by-one Error
|
CVE-2026-41502
|
2026-04-29 00:35 |
2026-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
573
|
7.5 |
HIGH
Network
|
bacnetstack
|
bacnet_stack
|
BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service property decoder…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2026-41503
|
2026-04-29 00:30 |
2026-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
574
|
- |
|
-
|
-
|
Memory safety bugs present in Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with…
New
|
-
|
CVE-2026-7323
|
2026-04-29 00:16 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
575
|
- |
|
-
|
-
|
Memory safety bugs present in Firefox ESR 115.35.0, Firefox ESR 140.10.0, Thunderbird ESR 140.10.0, Firefox 150.0.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption an…
New
|
-
|
CVE-2026-7322
|
2026-04-29 00:16 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
576
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability was found in D-Link DIR-825M 1.1.12. This issue affects the function sub_414BA8 of the file /boafrm/formWanConfigSetup. The manipulation of the argument submit-url results in buffer o…
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7289
|
2026-04-29 00:16 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
577
|
8.8 |
HIGH
Network
|
-
|
-
|
A vulnerability has been found in D-Link DIR-825M 1.1.12. This vulnerability affects the function sub_4151FC of the file /boafrm/formVpnConfigSetup. The manipulation of the argument submit-url leads …
New
|
CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error')
Classic Buffer Overflow
|
CVE-2026-7288
|
2026-04-29 00:16 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
578
|
7.5 |
HIGH
Network
|
-
|
-
|
Text::Minify::XS versions from v0.3.0 before v0.7.8 for Perl have a heap overflow when processing some malformed UTF-8 characters.
The minify functions mishandled some malformed UTF-8 characters, le…
New
|
CWE-122
CWE-176
Heap-based Buffer Overflow
Improper Handling of Unicode Encoding
|
CVE-2026-7040
|
2026-04-29 00:16 |
2026-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
579
|
5.4 |
MEDIUM
Network
|
-
|
-
|
The Check & Log Email WordPress plugin before 2.0.13 does not properly handle email replacement, which could allow unauthenticated users to perform Stored XSS attacks when the email encoder setting …
New
|
-
|
CVE-2026-5306
|
2026-04-29 00:16 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
580
|
3.7 |
LOW
Network
|
-
|
-
|
The raw message of every server-side AuthenticationException is returned to the unauthenticated remote caller in the gRPC status description. This allows an attacker to obtain information about the a…
New
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2026-40969
|
2026-04-29 00:16 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
