Security Vulnerabilities - CVEs Published In April 2023
In Tenda AC15 V15.03.05.19, The function "xkjs_ver32" contains a stack-based buffer overflow vulnerability.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-24
In Tenda AC15 V15.03.05.19, the function "xian_pppoe_user" contains a stack-based buffer overflow vulnerability.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-24
In Tenda AC15 V15.03.05.19, the function "getIfIp" contains a stack-based buffer overflow vulnerability.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-24
In Tenda AC15 V15.03.05.19, the function "henan_pppoe_user" contains a stack-based buffer overflow vulnerability.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-24
In Tenda AC15 V15.03.05.19, the function "sub_8EE8" contains a stack-based buffer overflow vulnerability.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-04-24
Ribose RNP before 0.16.3 may hang when the input is malformed.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-04-24
Ribose RNP before 0.16.3 sometimes lets secret keys remain unlocked after use.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-04-24
Bang Resto 1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the itemName parameter in the admin/menu.php Add New Menu function.
CVSS Score
4.8
EPSS Score
0.002
Published
2023-04-24
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-04-24
Uncaught Exception in GitHub repository eemeli/yaml prior to 2.0.0-5.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-04-24