Lucene search
K

45 matches found

CNNVD
CNNVD
added 2025/05/06 12:0 a.m.5 views

Qualcomm Chipsets 缓冲区错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A buffer error vulnerability exists in Qualcomm Chipsets, which arises from a memory corruption caused by the buffer size being changed by FW when reading a response from FW...

7.8CVSS6.8AI score0.00088EPSS
Exploits0References2
OSV
OSV
added 2025/05/02 4:15 p.m.4 views

DEBIAN-CVE-2023-53074

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ttmbo calltrace warning in psphwfini The call trace occurs when the amdgpu is removed after the mode1 reset. During mode1 reset, from suspend to resume, there is no need to reinitialize the ta firmware buffer whic...

5.5CVSS5.7AI score0.00164EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/02 3:55 p.m.19 views

CVE-2023-53074 drm/amdgpu: fix ttm_bo calltrace warning in psp_hw_fini

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ttmbo calltrace warning in psphwfini The call trace occurs when the amdgpu is removed after the mode1 reset. During mode1 reset, from suspend to resume, there is no need to reinitialize the ta firmware buffer whic...

0.00164EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/02 12:0 a.m.6 views

PT-2025-18838

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the drm/amdgpu component. The issue occurs when the amdgpu is removed after a mode1 reset, causing a call trace warning ...

8.8CVSS7.8AI score0.0129EPSS
Exploits5References1452
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-41038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Prevent buffer overrun when processing V2 alg headers Check that all fields...

5.5CVSS6AI score0.00274EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/02/11 12:0 a.m.5 views

PT-2025-6493 · Intel · Intel(R) System Security Report/System Resources Defense

Name of the Vulnerable Software and Affected Versions: IntelR System Security Report and System Resources Defense affected versions not specified Description: The issue is related to improper buffer restrictions in some IntelR System Security Report and System Resources Defense firmware. This cou...

8.7CVSS7.2AI score0.00196EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/24 3:1 p.m.26 views

Important: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as havi...

8.8CVSS7.1AI score0.01213EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/09/24 12:40 a.m.7 views

kernel: firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers

A vulnerability was found in the Linux kernel in the csdsp firmware involving the V2 algorithm headers and the wmfw V2 format, which introduced variable-length strings into the algorithm block header. This means the overall header length is variable and without proper checks can result in an...

5.5CVSS6.9AI score0.00274EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/09/13 12:0 a.m.5 views

PT-2024-30946 · Google · Android

Name of the Vulnerable Software and Affected Versions: Google Android affected versions not specified Description: The issue is caused by a logic error in the code, specifically in the ppmp protect mfcfw buf function of the code/drm fw.c file. This error can lead to memory corruption, resulting i...

7.8CVSS6.6AI score0.00076EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/09/02 10:22 a.m.15 views

CVE-2024-23364 Buffer Over-read in WLAN Firmware

Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element IE of a beacon frame that is received from over-the-air OTA...

7.5CVSS0.00297EPSS
Exploits0References1
OSV
OSV
added 2024/08/17 9:15 a.m.1 views

UBUNTU-CVE-2024-42313

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdecclose There appears to be a possible use after free with vdecclose. The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly...

7.8CVSS6.3AI score0.00228EPSS
Exploits0References27
CVE
CVE
added 2024/07/29 2:31 p.m.173 views

CVE-2024-41039

CVE-2024-41039 (Linux kernel) : The vulnerability is resolved by fixing overflow checks when parsing wmfw headers in firmware handling. The patch splits the length check into three separate verifications for wmfw_header, wmfw_adsp?_sizes, and wmfw_footer, addressing cases where ADSP2 and Halo Cor...

7.8CVSS7.2AI score0.00285EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2024/07/29 2:31 p.m.181 views

CVE-2024-41038

CVE-2024-41038 affects the Linux kernel firmware for cs_dsp. The vulnerability is a buffer overrun risk when processing V2 algorithm headers due to the wmfw V2 format introducing variable-length strings in the header; the header length and field positions vary with string lengths. The issue is mi...

5.5CVSS6.7AI score0.00274EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2024/02/28 5:32 a.m.43 views

Important: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as havi...

8.8CVSS7.1AI score0.01213EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/10 12:0 a.m.8 views

Intel NUC Security Vulnerability

The Intel NUC is a small minicomputer from Intel Corporation USA. A security vulnerability exists in the Intel NUC that stems from incorrect buffer limits in the BIOS firmware. It could allow a privileged user to potentially enable privileged escalation via local access...

7.8CVSS6.7AI score0.00149EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.4 views

kernel: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

7.8CVSS6.8AI score0.00153EPSS
Exploits0References5
NVD
NVD
added 2023/08/14 4:15 a.m.21 views

CVE-2023-3261

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerability in the librta.so.0.0.0 library.Successful exploitation could cause denial of service or unexpected behavior with respect to all interactions relying on the targeted vulnerable binary...

7.5CVSS7.7AI score0.00729EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/10 1:17 p.m.9 views

CVE-2023-22661

Buffer overflow in some IntelR Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access...

8.2CVSS8.3AI score0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/24 12:0 a.m.11 views

CVE-2023-22915

A buffer overflow vulnerability in the “fbwififorward.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50W firmware versions 4.30 through 5.35, USG20W-VPN firmware versions 4.30 through 5.35, and VPN series firmware versions 4.30 through 5.35, which could...

7.5CVSS7.8AI score0.01054EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/28 12:0 a.m.5 views

PT-2022-6525 · Tp Link · Tp-Link Archer Ax21

Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX21 AX1800 affected versions not specified Description: The issue is related to a buffer overflow vulnerability in the TP-Link AX1800 router's firmware, allowing remote attackers to execute arbitrary code on affected...

8.8CVSS8.2AI score0.00712EPSS
Exploits0References5
Rows per page
Query Builder