374 matches found
The vulnerability of the FreeType font rendering library, related to reading beyond the buffer in memory, allows a hacker to execute arbitrary code.
The vulnerability of the FreeType font rendering library relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by sending a specially crafted file containing variable fonts...
CVE-2025-20919
CVE-2025-20919 relates to Samsung Notes, affected versions prior to 4.4.26.71. The vulnerability is an out-of-bounds read when applying binary of video content, allowing reading of memory outside bounds. The issue is documented across multiple sources (e.g., Red Hat/RedHat-adapted CVE, PT-2025-98...
SAMSUNG Notes 安全漏洞
Samsung Notes is an application program from the South Korean company Samsung SAMSUNG. It is used to provide a recording function. Samsung Notes suffers from an out-of-bounds read vulnerability, which originates from an out-of-bounds read in a text content binary application, and can be exploited...
PT-2025-9889 · Samsung · Samsung Notes
Name of the Vulnerable Software and Affected Versions: Samsung Notes versions prior to 4.4.26.71 Description: The issue is related to an out-of-bounds read in applying extra data of base content. This allows attackers to read out-of-bounds memory. Recommendations: For versions prior to 4.4.26.71,...
Linux Distros Unpatched Vulnerability : CVE-2024-0340
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in vhostnewmsg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between...
Linux Distros Unpatched Vulnerability : CVE-2015-2059
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The stringpreputf8toucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other...
K000149918: PostgresQL vulnerability CVE-2021-3677
Security Advisory Description A flaw was found in postgresql. A purpose-crafted query can read arbitrary bytes of server memory. In the default configuration, any authenticated database user can complete this attack at will. The attack does not require the ability to create objects. If server...
AZL-56904 CVE-2025-1118 affecting package grub2 for versions less than 2.06-15
A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...
CVE-2025-1118 Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled
A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...
CVE-2025-0633 Heap Overflow in iniparser.c
Heap-based Buffer Overflow vulnerability in iniparserdumpsectionini in iniparser allows attacker to read out of bound memory...
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise programs lies in the ability to read data outside of the allowed range in memory, allowing an attacker to disclose protected information.
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages relates to reading data beyond the allowed range in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...
CVE-2025-20891
Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability...
CVE-2024-54507
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. An attacker with user privileges may be able to read kernel memory...
The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.
The vulnerability of the Ivanti EPM endpoint management software is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service failures...
The vulnerability of the Ivanti EPM endpoint management software, related to reading data beyond the buffer in memory, allows a hacker to trigger a service failure.
The vulnerability of the Ivanti EPM endpoint management software relates to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...
PT-2025-1251 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of Windows Digital Media and involves a memory reading vulnerability that can allow an attacker to elevate their privileges. This can...
PT-2025-1172 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to a component of the Windows operating system, specifically Digital Media, and involves a memory reading error beyond the allowed range. This can...
PT-2025-1161 · Microsoft · Windows Digital Media +1
Name of the Vulnerable Software and Affected Versions: Windows Digital Media affected versions not specified Description: The issue is related to an elevation of privilege in Windows Digital Media, which can be exploited to gain system-level privileges. It involves a memory reading vulnerability...
CVE-2023-31355
A flaw was found in the AMD firmware. This vulnerability allows a malicious hypervisor to overwrite a guest's UMC seed, potentially enabling the reading of memory from a decommissioned guest via improper restriction of write operations. Mitigation Mitigation for this issue is either not available...
The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the ability to read data beyond the acceptable range in memory, allowing an attacker to execute arbitrary code.
The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation relates to reading data beyond the permissible range in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using specially created WRL files...