CVE-2025-27072 Buffer Copy Without Checking Size of Input in Automotive Vehicle Networks

Information disclosure while processing a packet at EAVB BE side with invalid header length...

CVE-2025-27072

CVE-2025-27072 describes an information-disclosure issue in Qualcomm chipsets during EAVB BE side packet processing with an invalid header length. Connected sources reiterate: vulnerable component is in the EAVB BE processing path; root cause relates to handling of header lengths leading to leaka...

CVE-2025-27071

CVE-2025-27071 is a memory corruption vulnerability affecting Powerline Communication Firmware (buffer copy without checking input size). The CVE entry (CVE-2025-27071) and related feeds describe memory corruption when processing specific files. The NVD entry lists a high-severity impact with CVS...

CVE-2025-27071 Buffer Copy Without Checking Size of Input in Powerline Communication Firmware

Memory corruption while processing specific files in Powerline Communication Firmware...

The vulnerability of the xsk_pool_get_rx_frame_size() function in the virtio-net component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the xskpoolgetrxframesize function in the virtio-net component of the Linux operating system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, a...

CVE-2025-27058 Buffer Copy Without Checking Size of Input in Computer Vision

Memory corruption while processing packet data with exceedingly large packet...

CVE-2025-27052 Buffer Copy Without Checking Size of Input in Core Services

Memory corruption while processing data packets in diag received from Unix clients...

CVE-2025-27043 Buffer Copy Without Checking Size of Input in Video

Memory corruption while processing manipulated payload in video firmware...

CVE-2025-27043 Buffer Copy Without Checking Size of Input in Video

Memory corruption while processing manipulated payload in video firmware...

CVE-2025-24004

A physical attacker with access to the device display via USB-C can send a message to the device which triggers an unsecure copy to a buffer resulting in loss of integrity and a temporary denial-of-service for the stations until they got restarted by the watchdog...

PHOENIX CONTACT CHARX SEC-3xxx 安全漏洞

PHOENIX CONTACT CHARX SEC-3000 etc. are products of PHOENIX CONTACT, Germany.PHOENIX CONTACT CHARX SEC-3000 is an AC charge controller.PHOENIX CONTACT CHARX SEC-3050 is an AC charge controller.PHOENIX CONTACT CHARX SEC-3100 is an AC charge controller. PHOENIX CONTACT CHARX SEC-3100 is an AC charg...

The vulnerability of the mwifiexcmd_802_11_scan_ext() function in the drivers/net/wireless/marvell/mwifiex/scan.c file of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the mwifiexcmd80211scanext function in the drivers/net/wireless/marvell/mwifiex/scan.c file of the Linux kernel is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the downloadFile.cgi script of the TOTOLINK A800R router’s microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability in the downloadFile.cgi subroutine of the TOTOLINK A800R router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibilit...

The vulnerability in the driver/iio/adc/ad7923.c component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the drivers/iio/adc/ad7923.c component of the Linux operating system is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the sub_3C03C function in the microprogramming software of the dual-band Wi-Fi amplifier Netgear EX6200 allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sub3C03C function in the microprogramming software of the dual-band Wi-Fi amplifier Netgear EX6200 is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to influence the confidentiality,...

The vulnerability of the UploadCustomModule() function in the TOTOLink T10 router software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UploadCustomModule function in the TOTOLink T10 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...