The vulnerability of the SNMP protocol implementation in Cisco IOS and IOS XE operating systems allows a intruder to trigger a service failure.

The vulnerability of SNMP protocol implementations in Cisco IOS and IOS XE operating systems stems from operations that go beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted requests...

The vulnerability of D-Link DSR series router microprogramming software, related to the execution of operations beyond the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of D-Link DSR series router microprogramming software lies in the fact that the operation data is written outside the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the SceneKit component in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows attackers to disclose protected information.

The vulnerability of the SceneKit component in macOS, iOS, iPadOS, watchOS, tvOS, and visionOS relates to operations where data is written beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to disclose sensitive information that is protected by security...

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code and trigger service failures.

The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to operations that go beyond buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service interruptions...

The vulnerability of the sub_422eb8 function in Linksys E8450 Wi-Fi routers allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the sub422eb8 function in Linksys E8450 Wi-Fi routers’ microprogramming software is related to the copying of buffers without checking the size of the input data during the processing of the strncpy parameter. Exploiting this vulnerability allows an attacker to execute...

The vulnerability of the WLAN STA Driver software driver from MediaTek allows a hacker to execute arbitrary code.

The vulnerability of the WLAN STA Driver microprogramming software chip from MediaTek relates to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2024-28759

A crafted network packet may cause a buffer overrun in Wind River VxWorks 7 through 23.09...

CLSA-2025-1739352814 kernel: Fix of 13 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - btrfs: fix information leak in btrfsioctllogicaltoino CVE-2024-35849 - net: afcan: do not leave a dangling sk pointer in cancreate CVE-2024-56603 - netfilter: xtables: fix LED ID check in ledtgcheck...

Vulnerabilities of Linux operating system’s IB/core components, allowing attackers to cause service failures

The vulnerability of Linux operating system’s IB/core components is related to the execution of operations beyond the boundaries of memory buffers. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the SCSI component in the Linux operating system allows a hacker to increase their privileges.

The vulnerability of the SCSI component in the Linux operating system is related to the operation of the process beyond the memory buffer boundaries. Exploiting this vulnerability can allow an attacker to gain elevated privileges...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp: Prevent buffer overflows when processing V2 algorithm headers. It is necessary to ensure that all fields of a V2 algorithm header fit within the available firmware data buffer. The wmfw V2 format introduced...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ima: fixed the buffer overflow issue in imaeventdigestinitcommon. The function imaeventdigestinit calls imaeventdigestinitcommon, with HASHALGOLAST being used to access the array hashdigestsize. This leads to a buffer overflow. A...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp – Fixed the overflow checking of the wmfw header. The issue involved fixing the check to ensure that the firmware file buffer is large enough to accommodate the wmfw header, thereby preventing the buffer from bein...

The vulnerability of the kauth_cred_proc_update() function in the operating system kernels of macOS and iPadOS allows a hacker to trigger a service failure.

The vulnerability of the kauthcredprocupdate function in the macOS and iPadOS operating systems is related to synchronization errors when using a shared resource a “race condition”. This occurs when an operation goes beyond the buffer in memory. Exploiting this vulnerability can allow a remote...

The vulnerability of the AirPlay implementation in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS allows a attacker to trigger a service failure or execute arbitrary code.

The vulnerability of the AirPlay implementation in operating systems such as macOS, iOS, iPadOS, watchOS, tvOS, and visionOS stems from the operation of data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failures or execute arbitrary code...

CVE-2022-24788

Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. Versions of vyper prior to 0.3.2 suffer from a potential buffer overrun. Importing a function from a JSON interface which returns bytes generates bytecode which does not clamp bytes length, potentially resulting in a...

The vulnerability of the hab_ioctl() function in Qualcomm’s embedded software allows a hacker to disclose protected information.

The vulnerability of the habioctl function in Qualcomm’s embedded software lies in the fact that the operation results are written outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

CVE-2024-0099

NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the guest OS could cause buffer overrun in the host. A successful exploit of this vulnerability might lead to information disclosure, data tampering, escalation of privileges, and denial of service...

The vulnerability of the dcmdata component in the library for working with the DICOM format allows a perpetrator to cause a service failure.

The vulnerability of the dcmdata component in the DICOM format processing library is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

ROS-20250203-07

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service via a specially crafted...