Lucene search
K

17 matches found

CNNVD
CNNVD
added 2026/03/16 12:0 a.m.7 views

Philips Hue Bridge 安全漏洞

The Philips Hue Bridge is a smart lighting gateway device developed by the Japanese company Philips Hue. There is a security vulnerability in the Philips Hue Bridge, which stems from a lack of data size validation when processing custom Zigbee ZCL frames. This vulnerability may lead to heap buffe...

8CVSS7.6AI score0.00355EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-2410

Malware in sbrugna...

7.8CVSS7.7AI score0.00202EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3460

Malware in sbrugna...

6.8CVSS7.3AI score0.01921EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/09/15 11:27 p.m.2 views

SUSE CVE-2023-53257

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check S1G action frame size Before checking the action code, check that it even exists in the frame...

7.5CVSS6.5AI score0.00144EPSS
Exploits0References23
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 a.m.6 views

CVE-2019-10606

Out-of-bound access will occur in USB driver due to lack of check to validate the frame size passed by user in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, MSM8917,...

7.8CVSS9.3AI score0.00202EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.2 views

SUSE CVE-2011-3484

The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service loop and application crash via a malformed packet...

4.3CVSS6.4AI score0.01656EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.3 views

SUSE CVE-2018-10184

An issue was discovered in HAProxy before 1.8.8. The incoming H2 frame length was checked against the maxframesize setting instead of being checked against the bufsize. The maxframesize only applies to outgoing traffic and not to incoming, so if a large enough frame size is advertised in the...

7.5CVSS8.2AI score0.0843EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.3 views

SUSE CVE-2020-11102

hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length...

8.4CVSS7.4AI score0.01921EPSS
Exploits0References3
OSV
OSV
added 2023/01/25 6:15 a.m.6 views

CVE-2023-23609 contiki-ng BLE-L2CAP contains Improper size validation of L2CAP frames

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. Versions prior to and including 4.8 are vulnerable to an out-of-bounds write that can occur in the BLE-L2CAP module. The Bluetooth Low Energy - Logical Link Control and Adaptation Layer Protocol BLE-L2C...

8.2CVSS7.1AI score0.00353EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/10/06 12:0 a.m.2 views

Semtech LoRaMac-node 安全漏洞

Semtech LoRaMac-node is a reference implementation of a LoRa network node from Semtech Corporation, USA. A security vulnerability exists in LoRaMac-node versions prior to 4.7.0, which stems from the fact that its failure to properly validate the size of incoming radio frames could result in an...

9.8CVSS8.3AI score0.0143EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/10/06 12:0 a.m.7 views

PT-2022-24862 · Unknown · Loramac-Node

Name of the Vulnerable Software and Affected Versions: LoRaMac-node versions prior to 4.7.0 Description: The issue is caused by improper size validation of incoming radio frames, which can lead to a buffer overflow. Specifically, the function ProcessRadioRxDone expects incoming radio frames to ha...

9.8CVSS9.4AI score0.0143EPSS
Exploits1References5
OSV
OSV
added 2020/04/06 4:15 p.m.20 views

CVE-2020-11102

hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length...

5.6CVSS7AI score
Exploits0References3
Prion
Prion
added 2020/01/21 7:15 a.m.24 views

Improper access control

Out-of-bound access will occur in USB driver due to lack of check to validate the frame size passed by user in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, MSM8917,...

7.2CVSS8.2AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2020/01/21 6:30 a.m.104 views

CVE-2019-10606

CVE-2019-10606 describes an out-of-bounds access in the USB driver due to missing validation of the frame size provided by the user, affecting Qualcomm Snapdragon-based devices listed as Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial ...

7.8CVSS8.1AI score0.00202EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2016/06/13 1:59 a.m.1 views

CVE-2016-2486

mp3dec/SoftMP3.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 does not validate the relationship between allocated memory and the frame size, which allows attackers to gain privileges via a crafted application, a...

7.8CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2011/09/20 10:55 a.m.2 views

DEBIAN-CVE-2011-3484

The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service loop and application crash via a malformed packet...

4.3CVSS6.4AI score0.01656EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2011/09/20 10:55 a.m.20 views

CVE-2011-3484

The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6.2 does not properly validate a certain frame size, which allows remote attackers to cause a denial of service loop and application crash via a malformed packet...

4.3CVSS5.9AI score0.01656EPSS
Exploits1References2
Rows per page
Query Builder