10996 matches found
CVE-2025-27075 Improper Validation of Array Index in Bluetooth HOST
Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host...
CVE-2025-27075
CVE-2025-27075 affects Bluetooth Host on Qualcomm chipsets and involves memory corruption when processing IOCTL commands with larger buffers. Root cause cited is improper handling/validation related to large IOCTL buffers (description aligns with an array/index validation issue). Impact per avail...
CVE-2025-27067 Improper Validation of Array Index in DSP Service
Memory corruption while processing DDI call with invalid buffer...
CVE-2025-27067
CVE-2025-27067 is described as memory corruption that occurs while processing a DDI call with an invalid buffer. The entry is linked to Qualcomm chipsets (DSP service) and is scored CVSS v3.1: Local attack, Low attack complexity, Privileges required, no user interaction, with high impact on confi...
CVE-2025-27067 Improper Validation of Array Index in DSP Service
Memory corruption while processing DDI call with invalid buffer...
CVE-2025-54650
Improper array index verification vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect the audio decoding function...
CVE-2025-54650
Improper array index verification vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect the audio decoding function...
CVE-2025-54644
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-54643
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-54650
Improper array index verification vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect the audio decoding function...
CVE-2025-54650
The CVE-2025-54650 entry describes an improper array index verification vulnerability in Huawei HarmonyOS’s audio codec module. The flaw affects the audio decoding function; exploitation could impact decoding behavior as stated by multiple sources. Public assessments show a MEDIUM base score (NVD...
CVE-2025-54645
CVE-2025-54645 concerns Huawei HarmonyOS’ location service module, where an out-of-bounds array access occurs due to insufficient data verification. Affected component is the location service module; impact is potential unavailability. CVSS indicates local access with low attack complexity and no...
CVE-2025-54645
Out-of-bounds array access issue due to insufficient data verification in the location service module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54644
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-54637
Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-54616
Out-of-bounds array access vulnerability in the ArkUI framework. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54616
CVE-2025-54616 affects Huawei HarmonyOS ArkUI Framework with an out-of-bounds array access in ArkUI. CVSS data indicates local, low-privilege, no-user-interaction access leading to availability impact; exploitation details are not provided in the documents. Connected sources mention Huawei Harmon...
Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2025-1719)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2025-32094 · Huawei · Harmonyos
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: An improper array index verification issue exists in the audio codec module. Successful exploitation may affect the audio decoding function. Recommendations: ...
PT-2025-32089 · Unknown · Location Service Module
Name of the Vulnerable Software and Affected Versions: location service module affected versions not specified Description: The issue is an out-of-bounds array access caused by insufficient data verification within the location service module. Successful exploitation may affect availability...