CVE-2025-40580

MEDIUM Year: 2025
CVSS v3 Score
6.7
Medium
Weakness Type
CWE-121
View all →

Vulnerability Description

A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions). Affected devices are vulnerable to a stack-based buffer overflow. This could allow a non-privileged local attacker to execute arbitrary code on the device or to cause a denial of service condition.

Related Vulnerabilities

CVE-2020-27749

MEDIUM
CVSS:6.7(Medium)

A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary...

CWE-1212020

CVE-2021-21556

MEDIUM
CVSS:6.7(Medium)

Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious us...

CWE-1212021

CVE-2022-23006

MEDIUM
CVSS:6.7(Medium)

A stack-based buffer overflow vulnerability was found on Western Digital My Cloud Home, My Cloud Home Duo, and SanDisk ibi that could allow an attacker accessing the system locally to read information...

CWE-1212022

CVE-2023-29182

MEDIUM
CVSS:6.7(Medium)

A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiOS before 7.0.3 allows a privileged attacker to execute arbitrary code via specially crafted CLI commands, provided the attacker ...

CWE-1212023

CVE-2023-35012

MEDIUM
CVSS:6.7(Medium)

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated configuration is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user w...

CWE-1212023

CVE-2023-4273

MEDIUM
CVSS:6.7(Medium)

A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries fr...

CWE-1212023