Lucene search
+L

167 matches found

Positive Technologies
Positive Technologies
added 2023/07/04 12:0 a.m.19 views

PT-2023-18333 · Qualcomm · Snapdragon +51

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption in the audio component when concurrent tunnel playback or audio tunnel recording sessions are running. This can...

8.4CVSS6.8AI score0.00116EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.5 views

PT-2023-13255 · Qualcomm · Snapdragon +8

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to memory corruption in the Audio component due to an incorrect type cast during audio use-cases. Recommendations: At the moment, there is no information about ...

7.8CVSS7.7AI score0.00115EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.4 views

PT-2023-34928 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.11 Description: The issue is related to a potential null pointer dereference in the sof-audio component of the Linux Kernel. The problem arises when the swidget is not checked for NULL on sink failure in th...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/09 12:0 a.m.9 views

PT-2023-13259 · Qualcomm · Snapdragon +40

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption in the Audio component due to the use of an out-of-range pointer offset. This occurs when initiating a voice call...

7.8CVSS7.2AI score0.00122EPSS
Exploits0References3
Veracode
Veracode
added 2022/12/11 5:25 a.m.18 views

Denial Of Service (DoS)

chromium is vulnerable to denial of service. The vulnerability exists due to the use after free in the Audio component in the library, allowing an attacker to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension...

8.8CVSS8.6AI score0.0048EPSS
Exploits0References5Affected Software2
ATTACKERKB
ATTACKERKB
added 2022/11/30 12:15 a.m.9 views

CVE-2022-4179

Use after free in Audio in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...

8.8CVSS5.4AI score0.0048EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/09/12 12:0 a.m.7 views

The vulnerability of the Audio component in Qualcomm’s embedded software allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the Audio microprogramming component in Qualcomm’s embedded chips is related to a numerical overflow during the playback of WMA format files. Exploiting this vulnerability can allow an attacker to cause system failures or execute arbitrary code...

8.4CVSS7.5AI score0.00119EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/06/06 12:0 a.m.6 views

PT-2022-4766 · Qualcomm · Snapdragon Connectivity +8

Name of the Vulnerable Software and Affected Versions: Qualcomm embedded platform software affected versions not specified Snapdragon Auto affected versions not specified Snapdragon Compute affected versions not specified Snapdragon Connectivity affected versions not specified Snapdragon Consumer...

8.4CVSS8.2AI score0.00119EPSS
Exploits0References7
CNVD
CNVD
added 2022/02/13 12:0 a.m.25 views

Huawei Emui Out-of-Bounds Access Vulnerability

Huawei Emui is an Android-based mobile operating system developed by Huawei, a Chinese company. An out-of-bounds access vulnerability exists in Huawei EMUI version 12.0.0, which stems from the system's lax input parameter validation in the audio component. An attacker can exploit the vulnerabilit...

9.8CVSS9.4AI score0.00796EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/02/09 12:0 a.m.4 views

Huawei Emui 缓冲区错误漏洞

Huawei Emui is an Android-based mobile operating system developed by Huawei, a Chinese company. An out-of-bounds access vulnerability exists in Huawei EMUI version 12.0.0, which stems from the system's lax input parameter validation in the audio component. An attacker can exploit the vulnerabilit...

9.8CVSS5.7AI score0.00796EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/12/16 12:0 a.m.6 views

The vulnerability of the Audio component in the Google Chrome browser, related to reading beyond the buffer in memory, allows an attacker to gain unauthorized access to protected information.

The vulnerability of the Audio component in the Google Chrome browser relates to reading beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

6.5CVSS7.1AI score0.01371EPSS
Exploits0References10Affected Software6
Malwarebytes
Malwarebytes
added 2021/10/27 12:23 p.m.158 views

Update now! Apple patches bugs in iOS and iPadOS

On two consecutive days Apple has released a few important patches. iOS 14.8.1 comes just a month after releasing iOS 14.8 for those who didn’t want to update their iPhones to iOS 15. This update also came as a sort of surprise as it was not beta-tested beforehand. Earlier this year Apple announc...

9.3CVSS8.2AI score0.14721EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/10/26 12:0 a.m.3 views

PT-2021-8157

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a null pointer dereference in the snd usb set sample rate v2v3 function of the Linux kernel's usb-audio component. This could allow an attacker to cause a denial ...

5.5CVSS7AI score0.00222EPSS
Exploits0
CNNVD
CNNVD
added 2021/04/27 12:0 a.m.3 views

Apple macOS 缓冲区错误漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A buffer error vulnerability exists in macOS that originates from a boundary condition within the audio component. 10.14.4 18E226, 10.14.4 18E227, 10.14.5 18F132, 10.14.6 18G84,...

7.5CVSS7.5AI score0.01746EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.7 views

The vulnerability of the Google Chrome browser’s audio component relates to the use of memory after it is freed. This allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the audio component in Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

6.8CVSS7.7AI score0.01369EPSS
Exploits0References9Affected Software5
ATTACKERKB
ATTACKERKB
added 2021/03/16 12:0 a.m.165 views

CVE-2021-21193

Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Recent assessments: gwillcox-r7 at March 15, 2021 6:18am UTC reported: Reported as exploited in the wild at...

8.8CVSS9.8AI score0.26525EPSS
In wildExploits1References8
BDU FSTEC
BDU FSTEC
added 2021/03/15 12:0 a.m.5 views

The vulnerability of the Audio component in the Google Chrome browser allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Audio component in the Google Chrome browser is related to its use after release. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

7.3CVSS7.6AI score0.0112EPSS
Exploits1References11Affected Software6
Veracode
Veracode
added 2021/03/09 4:21 a.m.23 views

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A use after free flaw in the audio component allows an attacker to exploit a heap-based memory corruption using a malicious HTML page...

8.8CVSS3AI score0.02314EPSS
Exploits1References13Affected Software1
Veracode
Veracode
added 2021/03/09 4:21 a.m.25 views

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A use after free flaw in the audio component allows an attacker to exploit a heap-based memory corruption using a malicious HTML page...

8.8CVSS3AI score0.02314EPSS
Exploits1References13Affected Software1
Veracode
Veracode
added 2021/03/09 4:21 a.m.19 views

Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A use after free flaw in the audio component allows an attacker to execute arbitrary code on the host OS using a malicious HTML page...

8.8CVSS2.9AI score0.02446EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder