CVE-2023-45471

The QAD Search Server is vulnerable to Stored Cross-Site Scripting XSS in versions up to, and including, 1.0.0.315 due to insufficient checks on indexes. This makes it possible for unauthenticated attackers to create a new index and inject a malicious web script into its name, that will execute...

CVE-2025-68251

In the Linux kernel, the following vulnerability has been resolved: erofs: avoid infinite loops due to corrupted subpage compact indexes Robert reported an infinite loop observed by two crafted images. The root cause is that clusterofs can be larger than lclustersize for !NONHEAD lclusters in...

fast-able is vulnerable to DoS attack through insecure method

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

GHSA-95HM-PR6Q-298W fast-able is vulnerable to DoS attack through insecure method

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

NVIDIA GPU Display Driver 输入验证错误漏洞

NVIDIA GPU Display Driver is a display driver from NVIDIA Corporation. The NVIDIA GPU Display Driver suffers from an input validation error vulnerability that stems from a specially crafted parameter that results in improper index validation, which could lead to data tampering or denial of servic...

kernel: net: atlantic: fix aq_vec index out of range error

A vulnerability was found in the Linux kernel's Aquantia Atlantic driver, where a lack of proper bounds checking during loop indexing can lead to an out-of-bounds access. This can lead to undefined system behavior and a denial of service...

CVE-2019-14018

Possible out of bound array access as there is no check on carrier index passed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9206, MDM9607, MDM9625, MDM9635M...

GHSA-4H96-MV53-2C86 fast_id_map has a soundness issue and is unmaintained

FastMap::get lacks sufficient checks to its parameter index and is used to unsafely get a Vec element. fastidmap is unmaintained...

soundness issue and unmaintained

FastMap::get lacks sufficient checks to its parameter index and is used to unsafely get a Vec element. fastidmap is unmaintained...

PT-2025-20369 · Crates.Io · Fast Id Map

FastMap::get lacks sufficient checks to its parameter index and is used to unsafely get a Vec element. fast id map is unmaintained...

RUSTSEC-2025-0063 Possible unsound public API

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

Possible unsound public API

The public accessible struct SyncVec has a public safe method getunchecked. It accept a parameter index and used in the getunchecked without sufficient checks as mentioned here...

CVE-2024-56784 drm/amd/display: Adding array index check to prevent memory corruption

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption Why & How Array indices out of bound caused memory corruption. Adding checks to ensure that array index stays in bound...

CVE-2024-56784 drm/amd/display: Adding array index check to prevent memory corruption

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption Why & How Array indices out of bound caused memory corruption. Adding checks to ensure that array index stays in bound...

CVE-2024-26797 drm/amd/display: Prevent potential buffer overflow in map_hw_resources

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Prevent potential buffer overflow in maphwresources Adds a check in the maphwresources function to prevent a potential buffer overflow. The function was accessing arrays using an index that could potentially be...

iText Input Validation Error Vulnerability

iText is an open source library for creating and manipulating PDF files in Java. It is written by Bruno Lowagie, Paulo Soares and others. An input validation error vulnerability exists in Apryse iText version 8.0.2, which stems from a problem in the main function of the PdfDocument.java file,...

Cross site scripting

The QAD Search Server is vulnerable to Stored Cross-Site Scripting XSS in versions up to, and including, 1.0.0.315 due to insufficient checks on indexes. This makes it possible for unauthenticated attackers to create a new index and inject a malicious web script into its name, that will execute...

Denial Of Service (DoS)

radare2 is vulnerable to Denial Of Service DoS. The vulnerability exists due to the lack of negative index checks in the analarmcs.c, allowing an attacker to access memory locations before the start of the buffer, leading to a crash of the application...

CVE-2016-10476

CVE-2016-10476 affects Android on Qualcomm Snapdragon/mobile platforms (e.g., MSM/SD family). The issue is missing array index checks on the app index in function qcril_uim_clear_encrypted_pin, causing out-of-bounds reads when the app index is too large. Documented in multiple sources as a vulner...

libreoffice: Bookmarks in DOC documents are insufficiently checked causing memory corruption

It was discovered that LibreOffice did not properly sanity check bookmark indexes. By tricking a user into opening a specially crafted document, an attacker could possibly use this flaw to execute arbitrary code with the privileges of the user opening the file...