CVE-2024-55045

Firmament-Autopilot FMT-Firmware commit de5aec was discovered to contain a buffer overflow via the taskmavobcentry function at /comm/taskcomm.c...

CVE-2026-31748

In the Linux kernel, the following vulnerability has been resolved: comedi: medaq: Fix potential overrun of firmware buffer me2600xilinxdownload loads the firmware that was requested by requestfirmware. It is possible for it to overrun the source buffer because it blindly trusts the file format. ...

Siemens SIMATIC S7-1500 Out-of-bounds Read (CVE-2025-39787)

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdtloader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sanitized beforehand, but that's not necessary the case for other clients. Validate the size of the...

CVE-2025-22885

Improper buffer restrictions in the firmware for the TDX Module may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via local access when attack...

Intel Trust Domain Extensions 缓冲区错误漏洞

Intel Trust Domain Extensions is a confidential virtualization solution developed by Intel Corporation in the United States. It aims to isolate confidential virtual machines from non-confidential domain software stacks, including hypervisors, VMMs, and other non-trusted domain software stacks. Th...

CVE-2023-40843

Tenda AC6 USAC6V1.0BRV15.03.05.16multiTD01.bin is vulnerable to Buffer Overflow via function "sub73004."...

CVE-2021-0115

Buffer overflow in the firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access...

NVIDIA DGX Spark 缓冲区错误漏洞

The NVIDIA DGX Spark is a personal AI computer from NVIDIA. A buffer error vulnerability exists in NVIDIA DGX Spark GB10, which stems from an out-of-bounds write in the SROOT firmware that could lead to code execution, data tampering, denial of service, information disclosure, or elevation of...

EUVD-2021-14889

Malware in sbrugna...

EUVD-2022-39293

Malicious code in bioql PyPI...

EUVD-2025-13188

Malicious code in bioql PyPI...

CVE-2022-50258

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

CVE-2022-50258 wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

SUSE CVE-2025-39787

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdtloader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sanitized beforehand, but that's not necessary the case for other clients. Validate the size of the...

DEBIAN-CVE-2025-39787

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdtloader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sanitized beforehand, but that's not necessary the case for other clients. Validate the size of the...

AZL-67211 CVE-2025-39787 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdtloader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sanitized beforehand, but that's not necessary the case for other clients. Validate the size of the...

CVE-2025-39787 soc: qcom: mdt_loader: Ensure we don't read past the ELF header

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdtloader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sanitized beforehand, but that's not necessary the case for other clients. Validate the size of the...

CVE-2025-39787

CVE-2025-39787 (Linux kernel) affects the soc: qcom: mdt_loader in remoteproc usage. The root cause is reading beyond the ELF header during traversal; the fix validates the firmware buffer size and also validates e_phentsize and e_shentsize to ensure correct header traversal. Impact described as ...

CVE-2025-21096

Improper buffer restrictions in the firmware for some IntelR TDX may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2024-40416

A vulnerability in /goform/SetVirtualServerCfg in the sub6320C function in Tenda AX1806 1.0.0.1 firmware leads to stack-based buffer overflow...