74 matches found
CVE-2020-3699
Possible out of bound access while processing assoc response from host due to improper length check before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...
PT-2025-20288
Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: A flaw exists in the Framework component of the Android operating system related to a buffer copy without proper input validation. This issue may allow an attacker to escalate privileges...
PT-2025-24448
Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: A flaw exists in the VoiceInteractionManagerService.java component within the Android operating system. Specifically, a logic error in the onHandleForceStop function can cause the system to...
The vulnerability of the /boafrm/formStaticDHCP function in the microprogramming software of TOTOLINK N150RT routers allows a attacker to execute arbitrary code.
The vulnerability of the /boafrm/formStaticDHCP function in TOTOLINK N150RT router microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
ROS-20250424-04
The GPAC multimedia platform vulnerability involves uncontrolled resource consumption. Exploitation The vulnerability could allow an attacker to cause a denial of service A vulnerability in a function in gfm2tsprocesspmt of the GPAC multimedia platform is related to buffer copying without checkin...
The vulnerability of the NVIDIA Virtual GPU Manager driver, which allows a hacker to execute arbitrary code, trigger service failures, or disclose sensitive information.
The vulnerability of the NVIDIA Virtual GPU Manager driver relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code, cause service failures, or disclose sensitive information...
The vulnerability of the parse_options function in the sbgdec.c component of the libavformat module of the FFmpeg multimedia library allows a attacker to cause a service failure.
The vulnerability of the parseoptions function in the sbgdec.c component of the libavformat module of the FFmpeg multimedia library is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...
Advisory ROSA-SA-2025-2634
Software: OpenImageIO 2.2.20.0 OS: ROSA-CHROME packageevrstring: OpenImageIO-2.2.20.0-6 CVE-ID: CVE-2023-36183 BDU-ID: 2023-07656 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the readimg function of the OpenImageIO image processing library involves buffer copying without input validation...
The vulnerability of the Media Framework component of the Android operating system, which allows a hacker to increase their privileges
The vulnerability of the Media Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...
A vulnerability exists in the acdb25.dll file of the AutoCAD simulation, design, and drafting software, which allows a perpetrator to execute arbitrary code.
The vulnerability in the acdb25.dll file of the AutoCAD modeling, design, and drawing software relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code within the context of the current process while...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from buffer copying without checking the size of the audio input...
The vulnerability of the lsx_read_w_buf() function in the formats_i.c component of the SoX sound processing program allows a hacker to cause a service failure.
The vulnerability of the lsxreadwbuf function in the formsi.c component of the SoX sound processing program is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause a service failure using a specially created file...
ROS-20240920-11
Vulnerability in Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird email client is related to incorrect limitation of operations within the memory buffer. with incorrect limitation of operations within the memory buffer. Exploitation of the vulnerability could allow an attacker acting...
ROS-20240815-10
Vulnerability of the nsVacmAccessTable function in the OID Handler component of the Net-SNMP software suite of the Linux operating system is related to dereferencing of the NULL pointer. of Linux operating system is related to dereferencing of NULL pointer. Exploitation of the vulnerability could...
ROS-20240626-13
Vulnerability of ExtractImageSection function of LibTIFF library is related to buffer copying without checking the the size of the input. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service using a crafted Tiff file...
ROS-20240611-02
The vulnerability of Tss2RCDecode and Tss2RCSetHandler functions of TCG TPM2 TPM2 Software Stack implementation is related to buffer copying without input data validation. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, violate its integrity, and cause ...
PT-2024-4363 · Nvidia +1 · Nvidia Vgpu +1
Name of the Vulnerable Software and Affected Versions: NVIDIA vGPU software for Linux affected versions not specified Description: The issue is related to a buffer overrun vulnerability in the Virtual GPU Manager of the NVIDIA vGPU software for Linux. This vulnerability can be exploited by the...
ROS-20240529-04
A vulnerability in the ImageIO component of the Oracle Java SE software platform and the Oracle GraalVM Virtual Machine Enterprise Edition is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a partial denial of service Vulnerability i...
ROS-20240506-02
A vulnerability in the Glib library is related to GVariant deserialization. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability of Glib library function gbytearraynewtake is related to buffer copying without checking the the size of the input data...
The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to execute arbitrary code and gain elevated privileges.
The vulnerability of the Core component of the Oracle VM VirtualBox software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code and increase their privileges...