PT-2023-13290 · Qualcomm · Snapdragon +251

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to a transient DOS due to a buffer over-read in WLAN while parsing WLAN CSA action frames. Recommendations: At the moment, there is no information about a newer...

PT-2023-13266 · Unknown · Bluetooth Host

Name of the Vulnerable Software and Affected Versions: Bluetooth HOST affected versions not specified Description: The issue is related to information disclosure due to a buffer over-read in the Bluetooth HOST. This occurs while processing GetFolderItems and GetItemAttribute commands from a peer...

PT-2023-13808 · Core · Core

Name of the Vulnerable Software and Affected Versions: Core affected versions not specified Description: The issue is related to information disclosure due to a buffer overread. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerabilit...

PT-2023-13291 · Qualcomm · Snapdragon +254

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a transient Denial of Service DOS caused by a buffer over-read in WLAN when processing 802.11 management frames. This occurs whi...

CVE-2022-4433

A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS LenovoSetupConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure...

CVE-2022-4432

A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS PersistenceConfigDxe driver that could allow a local attacker with elevated privileges to cause information disclosure...

CVE-2022-4434

A buffer over-read vulnerability was reported in the ThinkPadX13s BIOS driver that could allow a local attacker with elevated privileges to cause information disclosure...

Lenovo ThinkPad 缓冲区错误漏洞

Lenovo ThinkPad is a portable computer from Lenovo, a Chinese company. A security vulnerability exists in the Lenovo ThinkPad, which stems from a vulnerability in its PersistenceConfigDxe driver that could allow a local attacker with elevated privileges to cause an information disclosure via a...

The vulnerability of the IPPP82.FLT module of the Corel Presentations presentation preparation and viewing software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the IPPP82.FLT module in the Corel Presentations preparation and presentation software relates to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information using a specially crafted PPT fi...

The vulnerability of the UAX200.dll library in the Corel Presentations presentation preparation and viewing software allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the UAX200.dll library in Corel Presentations’ presentation preparation and viewing software is related to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information through a specially...

The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.

The vulnerability of Adobe Illustrator graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created CDR file...

The vulnerability of the smb2_write function (fs/ksmbd/smb2pdu.c) in the ksmbd module of the Linux operating system allows a hacker to disclose protected information or cause service failures.

The vulnerability of the smb2write function fs/ksmbd/smb2pdu.c in the ksmbd module of the Linux operating system relates to the ability to read data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information or cause service...

The vulnerability of the smb2_write function (fs/ksmbd/smb2pdu.c) in the ksmbd module of the Linux operating system allows a hacker to disclose protected information or cause service failures.

The vulnerability of the smb2write function fs/ksmbd/smb2pdu.c in the ksmbd module of the Linux operating system relates to the ability to read data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information or cause service...

DEBIAN-CVE-2022-41318

A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a...

ALPINE-CVE-2022-41318

A buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these locations are sent to a...

The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.

The vulnerability of Adobe Illustrator graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of Adobe Illustrator’s graphic editor, related to reading data beyond the buffer in memory, allows attackers to exploit this to disclose protected information.

The vulnerability of Adobe Illustrator graphic editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of the CodeMeter license control application, related to reading data outside the buffer in memory, allows a violator to disclose protected information or cause service failure.

The vulnerability of the CodeMeter license control application relates to reading data outside the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information or cause service failures using a specially created TCP/IP packet...

DEBIAN-CVE-2022-23547

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possible buffer overread when parsing a certain STUN message. The vulnerability...

CVE-2022-23547

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possible buffer overread when parsing a certain STUN message. The vulnerability...