CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

905 matches found

BDU FSTEC•added 2025/01/23 12:0 a.m.•6 views

The vulnerability of the sub_422eb8 function in Linksys E8450 Wi-Fi routers allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the sub422eb8 function in Linksys E8450 Wi-Fi routers’ microprogramming software is related to the copying of buffers without checking the size of the input data during the processing of the strncpy parameter. Exploiting this vulnerability allows an attacker to execute...

9CVSS6AI score0.00693EPSS

Exploits1References4Affected Software1

CNNVD•added 2025/01/17 12:0 a.m.•2 views

Newtec/iDirect NTC2218、Newtec/iDirect NTC2250和Newtec/iDirect NTC2299 安全漏洞

The Newtec/iDirect NTC2218 and others are a modem from Newtec/iDirect. A security vulnerability exists in the Newtec/iDirect NTC2218, Newtec/iDirect NTC2250, and Newtec/iDirect NTC2299, which stems from a buffer copy that does not check the size of the input, resulting in remote code inclusion...

9.5CVSS7.7AI score0.0051EPSS

Exploits0References3

BDU FSTEC•added 2025/01/13 12:0 a.m.•7 views

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.4CVSS7.4AI score0.00183EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2025/01/12 12:0 a.m.•4 views

The vulnerability of the formSetLog function (/goform/formSetLog) in D-Link DIR-619L router software allows a intruder to trigger a service failure.

The vulnerability of the formSetLog /goform/formSetLog function in D-Link DIR-619L router microprogramming software lies in the copying of buffers without checking the size of input data when processing the curTime parameter. Exploiting this vulnerability can allow an attacker to cause service...

9CVSS7.6AI score0.01559EPSS

Exploits1References6Affected Software1

Cvelist•added 2025/01/06 10:33 a.m.•17 views

CVE-2024-21464 Buffer Copy Without Checking Size of Input in Data Network Stack & Connectivity

Memory corruption while processing IPA statistics, when there are no active clients registered...

8.4CVSS0.00145EPSS

Exploits0References1

Vulnrichment•added 2025/01/06 10:33 a.m.•15 views

CVE-2024-21464 Buffer Copy Without Checking Size of Input in Data Network Stack & Connectivity

Memory corruption while processing IPA statistics, when there are no active clients registered...

8.4CVSS7.2AI score0.00145EPSS

Exploits0References1

CVE•added 2025/01/06 10:33 a.m.•135 views

CVE-2024-21464

CVE-2024-21464 : Memory corruption in Qualcomm chipset kernels when processing IPA statistics with no active clients registered. Connected documents confirm it affects Qualcomm components (kernel) and is described as a memory corruption issue in multiple sources. Public technical details across s...

8.4CVSS8.6AI score0.00145EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/01/05 12:0 a.m.•3 views

PT-2025-1030 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions affected versions not specified Description: The issue is related to a component of the Android operating system, specifically a buffer copy without size check in the Media Framework. It allows an attacker to escalate...

8.8CVSS6.9AI score0.00183EPSS

Exploits0References8

Positive Technologies•added 2025/01/05 12:0 a.m.•4 views

PT-2025-1033 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a race condition in multiple functions of AccountManagerService.java, which could allow an attacker to bypass permissions and launch protected activities. This could...

8.8CVSS7AI score0.00183EPSS

Exploits0References9

BDU FSTEC•added 2024/12/27 12:0 a.m.•6 views

The vulnerability of the iommufd_access_change_ioas() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the iommufdaccesschangeioas function in the Linux operating system is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00227EPSS

Exploits0References12Affected Software3

BDU FSTEC•added 2024/12/05 12:0 a.m.•4 views

The vulnerability of the gsocks4aproxy.c component in the Glib library allows a hacker to cause a service failure.

The vulnerability of the gsocks4aproxy.c component in the Glib library is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

10CVSS7.2AI score0.01263EPSS

Exploits1References11Affected Software6

CVE•added 2024/11/26 11:15 a.m.•66 views

CVE-2024-47248

Apache NimBLE

6.3CVSS6.8AI score0.00692EPSS

Exploits0References3Affected Software1

OSV•added 2024/11/22 4:15 p.m.•3 views

CVE-2024-37049

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

6.5CVSS6.1AI score

Exploits0References1