CVE-2019-5666

CVE-2019-5666 affects the NVIDIA GPU Display Driver (kernel mode nvlddmkm.sys) for Windows and Linux. The issue arises in the DxgkDdiCreateContext path, where untrusted input is used to calculate or reference an array index without proper validation, enabling potential denial of service or privil...

CVE-2019-5666

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys create context command DDI DxgkDdiCreateContext in which the product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index...

Unauthorized Access Vulnerability in Multiple Qualcomm Products

Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The SD 425 is a central processing unit CPU product. An unauthorized access vulnerability exists in Display in multiple Qualcomm products, which stem...

CVE-2018-13913

Improper validation of array index can lead to unauthorized access while processing debugFS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in version MDM9150, MDM9206, MDM9607, MDM9640,...

CVE-2018-13913

CVE-2018-13913 describes an unauthorized access vulnerability caused by improper validation of an array index while processing debugFS in Qualcomm Snapdragon components. The CNVD entry (CNVD-2019-05662) specifies this vulnerability as affecting multiple Qualcomm products and variants, including M...

CVE-2018-13913

Improper validation of array index can lead to unauthorized access while processing debugFS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in version MDM9150, MDM9206, MDM9607, MDM9640,...

Input validation

Improper validation of array index can lead to unauthorized access while processing debugFS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in version MDM9150, MDM9206, MDM9607, MDM9640,...

CVE-2019-1000016

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...

CVE-2019-1000016

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...

DEBIAN-CVE-2019-1000016

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...

CVE-2019-1000016

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...

CVE-2019-1000016

CVE-2019-1000016 affects FFmpeg 4.1: CWE-129 improper validation of array index in libavcodec/cbs_av1.c, enabling Denial of Service via specially crafted AV1 input. The issue is confirmed across multiple feeds (NVD/OSV/SUSE/Ubuntu/PT Security). Fix appears in commit b97a4b658814b2de8b9f2a3bce491c...

CVE-2019-1000016

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...

CVE-2019-1000016

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbsav1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in...

Denial Of Service

PostgreSQL is vulnerable to denial of service DoS attack. The attack exists because of failure to have proper the enumrecv function declaration in backend/utils/adt/enum.c causes an array index error, leading to a heap-based out-of-bounds buffer read flaw. Therefore, an unprivileged database user...

Denial Of Service (DoS)

php is vulnerable to denial of service DoS attacks. The vulnerability exists through an Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD...

Denial Of Service (DoS)

net-snmp is vulnerable to denial of service DoS attacks. The vulnerability exists through an array index error in the handlensExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service out-of-bounds read and snmpd...

Atlantis Word Processor Out-of-Bounds Write Vulnerability

Atlantis Word Processor is a suite of word processor software from the Atlantis Word Processor team. An exploitable out-of-bounds write vulnerability exists in version 3.2.7.2 of Atlantis Word Processor. The vulnerability stems from the program not properly validating array indexes. An attacker c...

3 New Code Execution Flaws Discovered in Atlantis Word Processor

This is why you should always think twice before opening innocent looking email attachments, especially word and pdf files. Cybersecurity researchers at Cisco Talos have once again discovered multiple critical security vulnerabilities in the Atlantis Word Processor that allow remote attackers to...

Atlantis Word Processor document endnote reference code execution vulnerability

Summary An exploitable arbitrary write vulnerability exists in the Word document parser of the Atlantis word processor. A specially crafted document can prevent Atlas from adding elements to an array that is indexed by a loop. When reading from this array, the application will use an out-of-bound...