167 matches found
PT-2023-18333 · Qualcomm · Snapdragon +51
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption in the audio component when concurrent tunnel playback or audio tunnel recording sessions are running. This can...
PT-2023-13255 · Qualcomm · Snapdragon +8
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to memory corruption in the Audio component due to an incorrect type cast during audio use-cases. Recommendations: At the moment, there is no information about ...
PT-2023-34928 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.11 Description: The issue is related to a potential null pointer dereference in the sof-audio component of the Linux Kernel. The problem arises when the swidget is not checked for NULL on sink failure in th...
PT-2023-13259 · Qualcomm · Snapdragon +40
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption in the Audio component due to the use of an out-of-range pointer offset. This occurs when initiating a voice call...
Denial Of Service (DoS)
chromium is vulnerable to denial of service. The vulnerability exists due to the use after free in the Audio component in the library, allowing an attacker to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension...
CVE-2022-4179
Use after free in Audio in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...
The vulnerability of the Audio component in Qualcomm’s embedded software allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the Audio microprogramming component in Qualcomm’s embedded chips is related to a numerical overflow during the playback of WMA format files. Exploiting this vulnerability can allow an attacker to cause system failures or execute arbitrary code...
PT-2022-4766 · Qualcomm · Snapdragon Connectivity +8
Name of the Vulnerable Software and Affected Versions: Qualcomm embedded platform software affected versions not specified Snapdragon Auto affected versions not specified Snapdragon Compute affected versions not specified Snapdragon Connectivity affected versions not specified Snapdragon Consumer...
Huawei Emui Out-of-Bounds Access Vulnerability
Huawei Emui is an Android-based mobile operating system developed by Huawei, a Chinese company. An out-of-bounds access vulnerability exists in Huawei EMUI version 12.0.0, which stems from the system's lax input parameter validation in the audio component. An attacker can exploit the vulnerabilit...
Huawei Emui 缓冲区错误漏洞
Huawei Emui is an Android-based mobile operating system developed by Huawei, a Chinese company. An out-of-bounds access vulnerability exists in Huawei EMUI version 12.0.0, which stems from the system's lax input parameter validation in the audio component. An attacker can exploit the vulnerabilit...
The vulnerability of the Audio component in the Google Chrome browser, related to reading beyond the buffer in memory, allows an attacker to gain unauthorized access to protected information.
The vulnerability of the Audio component in the Google Chrome browser relates to reading beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
Update now! Apple patches bugs in iOS and iPadOS
On two consecutive days Apple has released a few important patches. iOS 14.8.1 comes just a month after releasing iOS 14.8 for those who didn’t want to update their iPhones to iOS 15. This update also came as a sort of surprise as it was not beta-tested beforehand. Earlier this year Apple announc...
PT-2021-8157
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a null pointer dereference in the snd usb set sample rate v2v3 function of the Linux kernel's usb-audio component. This could allow an attacker to cause a denial ...
Apple macOS 缓冲区错误漏洞
Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A buffer error vulnerability exists in macOS that originates from a boundary condition within the audio component. 10.14.4 18E226, 10.14.4 18E227, 10.14.5 18F132, 10.14.6 18G84,...
The vulnerability of the Google Chrome browser’s audio component relates to the use of memory after it is freed. This allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.
The vulnerability of the audio component in Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...
CVE-2021-21193
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: gwillcox-r7 at March 15, 2021 6:18am UTC reported: Reported as exploited in the wild at...
The vulnerability of the Audio component in the Google Chrome browser allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Audio component in the Google Chrome browser is related to its use after release. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
Arbitrary Code Execution
chromium is vulnerable to arbitrary code execution. A use after free flaw in the audio component allows an attacker to exploit a heap-based memory corruption using a malicious HTML page...
Arbitrary Code Execution
chromium is vulnerable to arbitrary code execution. A use after free flaw in the audio component allows an attacker to exploit a heap-based memory corruption using a malicious HTML page...
Arbitrary Code Execution
chromium is vulnerable to arbitrary code execution. A use after free flaw in the audio component allows an attacker to execute arbitrary code on the host OS using a malicious HTML page...