Qualcomm 缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way to miniaturize circuitry including primarily semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in multiple Qualcomm...

GHSA-5JFW-35XP-5M42 Buffer length underflow in LoginPacket causing unchecked exceptions to be thrown

Impact LoginPacket uses BinaryStream-getLInt to read the lengths of JSON payloads it wants to decode. Unfortunately, BinaryStream-getLInt returns a signed integer, meaning that a malicious client can craft a packet with a large uint32 value for payload buffer size which would be interpreted as a...

Qualcomm 芯片 缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in a number of Qualcomm products...

CVE-2021-40027

The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of this vulnerability may affect data confidentiality...

CVE-2021-40027

The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of this vulnerability may affect data confidentiality...

Design/Logic Flaw

The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of this vulnerability may affect data confidentiality...

CVE-2021-40027

CVE-2021-40027 describes a buffer-length calculation vulnerability in Huawei HarmonyOS Bone Voice TA, with potential data-confidentiality impact. The NVD reports CVSS2 (5.0, MEDIUM, network/low complexity) and CVSS3.1 (7.5, HIGH, network/low, confidentiality impact high). Connected docs reiterate...

CVE-2021-40027

The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of this vulnerability may affect data confidentiality...

PT-2022-11149 · Unknown · Bone Voice Id Ta

Name of the Vulnerable Software and Affected Versions: bone voice ID TA affected versions not specified Description: The issue is related to a calculation error in buffer length, which may impact data confidentiality. Recommendations: At the moment, there is no information about a newer version...

yubihsm-shell 缓冲区错误漏洞

yubihsm-shell is a component for individual developers to interact with YubiHSM 2. The component is mostly found in applications that interact with YubiHSM 2 and is geared towards user and program level interaction. A buffer error vulnerability exists in yubihsm-shell where the product does not...

GSD-2021-1002340 scsi: core: Fix scsi_mode_sense() buffer length handling

scsi: core: Fix scsimodesense buffer length handling This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.5 by commit...

UVI-2021-1002340 scsi: core: Fix scsi_mode_sense() buffer length handling

scsi: core: Fix scsimodesense buffer length handling This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.5 by commit...

EulerOS Virtualization 2.9.1 : libssh (EulerOS-SA-2021-2753)

According to the versions of the libssh package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime...

The vulnerability of the MPLS Operation, Administration, and Maintenance (OAM) function of the Cisco NX-OS operating system allows a attacker to cause maintenance failures.

The vulnerability of the MPLS Operation, Administration, and Maintenance OAM function in the Cisco NX-OS operating system is related to the lack of checks on buffer length and reading beyond the memory boundary. Exploiting this vulnerability can allow a malicious actor to cause service...

CVE-2021-3581

Buffer Access with Incorrect Length Value in zephyr. Zephyr versions = =2.5.0 contain Buffer Access with Incorrect Length Value CWE-805. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-8q65-5gqf-fmw5...

PT-2021-21063 · Zephyr · Zephyr

Name of the Vulnerable Software and Affected Versions: Zephyr versions 2.5.0 and later Description: The issue is related to Buffer Access with Incorrect Length Value in Zephyr, which is described as CWE-805. This problem affects Zephyr versions 2.5.0 and later. Recommendations: For Zephyr version...

多款Qualcomm产品缓冲区错误漏洞

Qualcomm chips are chips from Qualcomm, Inc. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and is often manufactured on the surface of semiconductor wafers. Several Qualcomm Snapdragon products are vulnerable to a buffer overflow. The vulnerability...

`DecimalArray` does not perform bound checks on accessing values and offsets

DecimalArray performs insufficient bounds checks, which allows out-of-bounds reads in safe code if the length of the backing buffer is not a multiple of 16...

CVE-2021-1930

Possible out of bounds read due to incorrect validation of incoming buffer length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

Out-of-bounds

Possible out of bounds read due to incorrect validation of incoming buffer length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...