379 matches found
CVE-2024-21970
Improper validation of an array index in the AND power Management Firmware could allow a privileged attacker to corrupt AGESA memory potentially leading to a loss of integrity...
CVE-2024-21970
Improper validation of an array index in the AND power Management Firmware could allow a privileged attacker to corrupt AGESA memory potentially leading to a loss of integrity...
CVE-2024-21970
CVE-2024-21970 describes improper validation of an array index in the AND power Management Firmware, causing possible AGESA memory corruption and loss of integrity when exploited by a privileged attacker. Connected documents identify affected AMD Client Processor platforms and indicate mitigation...
CVE-2024-21970
Improper validation of an array index in the AND power Management Firmware could allow a privileged attacker to corrupt AGESA memory potentially leading to a loss of integrity...
CVE-2024-21970
Improper validation of an array index in the AND power Management Firmware could allow a privileged attacker to corrupt AGESA memory potentially leading to a loss of integrity...
CVE-2023-31306
Improper validation of an array index in the AMD graphics driver software could allow an attacker to pass malformed arguments to the dynamic power management DPM functions resulting in an out of bounds read and loss of availability...
CVE-2023-31306
CVE-2023-31306 concerns the AMD graphics driver software and its dynamic power management (DPM) handling. The root cause is improper validation of an array index, which can enable passing malformed arguments to DPM functions, causing an out-of-bounds read and resulting in loss of availability. Th...
AMD Embedded Processors和AMD Client Processor 安全漏洞
AMD Embedded Processors and AMD Client Processor are both products of AMD Semiconductor, Inc.AMD Embedded Processors are a family of embedded high-performance GPUs.AMD Client Processor is a processor for client devices such as personal computers, AMD Embedded Processors and AMD Client Processors...
Improper Validation of Array Index
Overview Affected versions of this package are vulnerable to Improper Validation of Array Index via the decodearrayindexfrompointer function when processing crafted JSON pointer strings. An attacker can cause a denial of service and unexpected behavior by supplying inputs with non-digit character...
Linux Distros Unpatched Vulnerability : CVE-2022-1237
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Validation of Array Index in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is heap overflow and may be exploitable. For more...
Huawei HarmonyOS audio codec module array index improper validation vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An improper array index validation vulnerability exists in the Huawei HarmonyOS audio codec module, which can be exploited by an attacker to cause audio...
The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to perform a spoofing attack or cause a system failure.
The vulnerability of the NVIDIA Virtual GPU Manager driver relates to improper validation of the array index. Exploiting this vulnerability can allow an attacker to perform a spoofing attack or cause service failures...
CVE-2025-27075 Improper Validation of Array Index in Bluetooth HOST
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host...
CVE-2025-27067 Improper Validation of Array Index in DSP Service
Memory corruption while processing DDI call with invalid buffer...
CVE-2025-27067
CVE-2025-27067 is described as memory corruption that occurs while processing a DDI call with an invalid buffer. The entry is linked to Qualcomm chipsets (DSP service) and is scored CVSS v3.1: Local attack, Low attack complexity, Privileges required, no user interaction, with high impact on confi...
CVE-2025-5866
A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function syssigprocmask of the file rt-thread/components/lwp/lwpsyscall.c. The manipulation of the argument how leads to improper validation of array index...
CVE-2025-5868
A vulnerability, which was classified as critical, has been found in RT-Thread 5.1.0. This issue affects the function systhreadsigprocmask of the file rt-thread/components/lwp/lwpsyscall.c. The manipulation of the argument how leads to improper validation of array index...
CVE-2025-5866
A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function syssigprocmask of the file rt-thread/components/lwp/lwpsyscall.c. The manipulation of the argument how leads to improper validation of array index...
CVE-2025-5866 RT-Thread lwp_syscall.c sys_sigprocmask array index
A vulnerability classified as critical has been found in RT-Thread 5.1.0. This affects the function syssigprocmask of the file rt-thread/components/lwp/lwpsyscall.c. The manipulation of the argument how leads to improper validation of array index...
CVE-2025-3357 IBM Tivoli Monitoring code execution
IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to execute arbitrary code due to improper validation of an index value of a dynamically allocated array...