CVE-2025-47391

CVE-2025-47391 corresponds to a memory corruption issue described in connected records as a stack-based buffer overflow in a camera driver, triggered during processing of a frame request from user. The CVSS 3.1 vector (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) indicates local attack vector with low pr...

CVE-2025-47391 Stack-based Buffer Overflow in Camera Driver

Memory corruption while processing a frame request from user...

CVE-2025-47390 Buffer Over-read in Camera

Memory corruption while preprocessing IOCTL request in JPEG driver...

CVE-2025-47390

CVE-2025-47390 describes memory corruption during preprocessing of an IOCTL request in the JPEG driver (also referenced as a Camera-related issue). The vulnerability is categorized with high impact (CVSSv3.1: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and requires local access with low privileges; ther...

CVE-2025-47390 Buffer Over-read in Camera

Memory corruption while preprocessing IOCTL request in JPEG driver...

CVE-2025-47374 Use After Free in Camera Driver

Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling...

CVE-2025-47374

CVE-2025-47374 involves a use-after-free in the camera driver leading to memory corruption. Reported cause: memory access to freed memory due to concurrent fence deregistration and signal handling. Affected component is the camera driver; impact as described is memory corruption with potential im...

CVE-2025-47374 Use After Free in Camera Driver

Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling...

PT-2026-30647

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...

PT-2026-30646

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporated in the United States. There is a security vulnerability in Qualcomm Chipsets, which stems from the lack of size verification when accessing the output buffer during the IOCTL processing of the camera sensor driver. This...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporated in the United States. There is a security vulnerability in Qualcomm Chipsets, which stems from the lack of size verification when accessing the output buffer during the IOCTL processing of the camera sensor driver. This...

Exploit for CVE-2025-1739

CVE-2025-1738 & CVE-2025-1739 — Trivision Camera NC227WF PoC...

Exploit for CVE-2025-1738

CVE-2025-1738 - Trivision Camera NC227WF PoC...

TP-Link Tapo C520WS 安全漏洞

The TP-Link Tapo C520WS is a WiFi camera produced by TP-Link Corporation. The TP-Link Tapo C520WS v2.6 version has a security vulnerability. This vulnerability stems from inconsistencies in the JSON request parsing and authorization logic during the authentication check in the DS configuration...

Apple’s Camera Indicator Lights

A thoughtful review of Apple's system to alert users that the camera is on. It's really well-designed, and important in a world where malware could surreptitiously start recording. The reason it's tempting to think that a dedicated camera indicator light is more secure than an on-display indicato...

CVE-2025-69986

A buffer overflow vulnerability exists in the ONVIF GetStreamUri function of LSC Indoor Camera V7.6.32. The application fails to validate the length of the Protocol parameter inside the Transport element. By sending a specially crafted SOAP request containing an oversized protocol string, an...

CVE-2026-29055

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior to 2.6.0, the image processing pipeline in Tandoor Recipes explicitly skips EXIF metadata stripping, image rescaling, and size validation for WebP and GIF image formats. A...

EUVD-2025-209095

A buffer overflow vulnerability exists in the ONVIF GetStreamUri function of LSC Indoor Camera V7.6.32. The application fails to validate the length of the Protocol parameter inside the Transport element. By sending a specially crafted SOAP request containing an oversized protocol string, an...

CVE-2025-69986

A buffer overflow vulnerability exists in the ONVIF GetStreamUri function of LSC Indoor Camera V7.6.32. The application fails to validate the length of the Protocol parameter inside the Transport element. By sending a specially crafted SOAP request containing an oversized protocol string, an...