Heap-based Buffer Overflow

libopenbabel.so is vulnerable to Heap-based Buffer Overflow. The vulnerability exists in the ReadMolecule function at orcaformat.cpp when parsing an input file due to improper handling of the buffer size, which allows an attacker to provide a specially-crafted malformed file resulting in arbitrar...

K000134895: Intel QAT Driver vulnerabilities CVE-2022-21804, CVE-2022-21239, CVE-2022-41808

Security Advisory Description CVE-2022-21804 Out-of-bounds write in software for the Intel QAT Driver for Windows before version 1.9.0-0008 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2022-21239 Out-of-bounds read in software for the Intel Q...

CVE-2022-41808

An improper buffer restriction flaw was found in the software for the Intel® QAT Driver for the Linux Kernel. This flaw allows an authenticated user to cause a denial of service via local access. Mitigation Please contact the hardware vendor for more updates...

K000134726: Intel QAT Engine for OpenSSL vulnerability CVE-2022-43507

Security Advisory Description Improper buffer restrictions in the IntelR QAT Engine for OpenSSL before version 0.6.16 may allow a privileged user to potentially enable escalation of privilege via network access. CVE-2022-43507 Impact There is no impact; F5 products are not affected by this...

Intel® Server Board BMC Firmware Advisory

Summary: Potential security vulnerabilities in some Intel® Server Board Baseboard Management Controller BMC firmware may allow escalation of privilege, denial of service or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability...

Intel® QAT Driver Advisory

Summary: Potential security vulnerabilities in some Intel® QuickAssist Technology QAT drivers may allow escalation of privilege, information disclosure or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2022-218...

CVE-2022-34422

Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM communication buffer verification vulnerability. A local malicious user with high Privileges may potentially exploit this vulnerability to perform arbitrary code execution or cause denial of service...

CVE-2022-34419

Dell PowerEdge BIOS and Dell Precision BIOS contain an Improper SMM communication buffer verification vulnerability. A local malicious user with high Privileges may potentially exploit this vulnerability to perform arbitrary code execution or cause denial of service...

Huawei EulerOS: Security Advisory for linux-firmware (EulerOS-SA-2022-2851)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service. The vulnerability exists in the FusedResizeAndPadConv2D function of nnops.cc due to improper buffer size checking which allows an attacker to cause an application crash by providing malicious input...

PT-2022-19651 · Unknown · Hyperscan Library

Name of the Vulnerable Software and Affected Versions: Hyperscan library versions prior to 04/29/2022 Description: The issue is related to improper buffer restrictions in the Hyperscan library, which may allow an unauthenticated user to potentially enable escalation of privilege via network acces...

Intel PROSet/Wireless WiFi Software 缓冲区错误漏洞

Intel PROSet/Wireless WiFi Software is a wireless network card driver from Intel Corporation USA. A security vulnerability exists in Intel PROSet/Wireless WiFi Software that originates from improper buffer limiting...

CVE-2021-30341

Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

CVE-2022-24297

Improper buffer restrictions in firmware for some IntelR NUCs may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2022-28786

Improper buffer size check logic in aviextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic...

CVE-2021-30333

Improper validation of buffer size input to the EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2021-30306

CVE-2021-30306 relates to a buffer over-read caused by improper buffer allocation for a file length supplied from user space in Qualcomm/Snapdragon components (e.g., Snapdragon Auto, Connectivity, Industrial IOT, Mobile). Connected sources identify downstream product families (Qualcomm QCA6574AU,...

Intel Ethernet Adapters 800 缓冲区错误漏洞

Intel Ethernet Adapters 800 is an Ethernet adapter from Intel Corporation USA. A security vulnerability exists in the Intel Ethernet Adapters 800 Series Controllers that stems from improper buffer limiting in the firmware of the adapters in question. The vulnerability could allow a privileged use...

CVE-2020-11304

Possible out of bound read in DRM due to improper buffer length check. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking...

NewStart CGSL MAIN 6.02 : linux-firmware Vulnerability (NS-SA-2021-0082)

The remote NewStart CGSL host, running version MAIN 6.02, has linux-firmware packages installed that are affected by a vulnerability: - Improper buffer restriction in some IntelR Wireless BluetoothR products before version 21.110 may allow an unauthenticated user to potentially enable escalation ...