Lucene search
K

31 matches found

CVE
CVE
added 2026/05/01 2:15 p.m.11 views

CVE-2026-31776

CVE-2026-31776 affects the Linux kernel via ALSA ctxfi SPDIF1 handling. The issue occurs in daio_device_index() for SPDIF1 (hw20k2) where the index is not properly handled, leading to an out-of-bounds access. Affected code path is fixed upstream by returning the correct index, mirroring the hw20k...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.9 views

EUVD-2026-26589

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Fix missing SPDIFI1 index handling SPDIF1 DAIO type isn't properly handled in daiodeviceindex for hw20k2, and it returned -EINVAL, which ended up with the out-of-bounds array access. Follow the hw20k1 pattern and...

5.7AI score0.0012EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from missing index handling of the SPDIF1 DAIO type in the ALSA ctxfi driver, which could lead to out-of-bounds...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.5 views

PT-2026-36411

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the ALSA ctxfi component, the daio device index function fails to properly handle the SPDIF1 DAIO type for hw20k2. This causes the function to return -EINVAL, leading to an...

7.8CVSS7.2AI score0.0012EPSS
Exploits0References16
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.5 views

Tenda W3 安全漏洞

Tenda W3 is a wireless access point device from the Chinese company Tenda. Version 1.0.0.32204 of Tenda W3 contains a security vulnerability. This vulnerability stems from incorrect handling of parameters “index” and “GO” in the file/goform/WifiMacFilterSet, which may lead to a stack buffer...

9CVSS7.7AI score0.00635EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.8 views

libvips 安全漏洞

libvips is an open-source fast image processing library with low memory requirements. Version 8.19.0 of libvips contains a security vulnerability, which stems from improper handling of the parameter “index” in the file “libvips/conversion/bandrank.c”. This vulnerability may lead to a heap-based...

7.8CVSS6.2AI score0.00243EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-23076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: ctxfi: Fix potential OOB access in audio mixer handling In the audio mixer handling code of ctxfi driver, the conf field is used as a kind of loop index,...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/19 5:2 p.m.2 views

CVE-2025-14957 WebAssembly Binaryen IRBuilder wasm-ir-builder.cpp makeLocalTee null pointer dereference

A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBuilder::makeLocalSet/IRBuilder::makeLocalTee of the file src/wasm/wasm-ir-builder.cpp of the component IRBuilder. Such manipulation of the argument Index leads to null pointer...

4.8CVSS6.4AI score0.00179EPSS
Exploits1References9
OSV
OSV
added 2025/05/26 4:15 a.m.2 views

DEBIAN-CVE-2025-5168

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function MDLImporter::ImportUVCoordinate3DGSMDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument iIndex leads to out-of-bound...

5.5CVSS3.8AI score0.00208EPSS
Exploits1References1
OSV
OSV
added 2025/04/19 9:6 a.m.5 views

CLSA-2025-1745053614 net-snmp: Fix of 2 CVEs

CVE-2022-24805: fix buffer overflow issue in handling of the INDEX of NET-SNMP-VACM- MIB that allows out-of-bounds memory access by user with read-only credentials - CVE-2022-24810: fix NULL pointer dereference caused by a user with read-write credentials using a malformed OID in a SET to the...

8.8CVSS7.1AI score0.01299EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/10/09 6:30 p.m.5 views

net-snmp: A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access.

A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access issue...

8.8CVSS5.9AI score0.01299EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/09/26 7:12 p.m.51 views

net-snmp: A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access.

A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access issue...

8.8CVSS5.9AI score0.01299EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/27 12:0 a.m.3 views

Tenda i21 安全漏洞

Tenda i21 is a wireless access point from Tenda China. A security vulnerability exists in Tenda i21 version 1.0.0.144656, which stems from an incorrect manipulation of the parameter ssidIndex that can lead to a stack-based buffer overflow. No details of the vulnerability are provided at this time...

9CVSS7.2AI score0.01349EPSS
Exploits0References5
CVE
CVE
added 2024/04/16 7:37 p.m.231 views

CVE-2022-24805

CVE-2022-24805 affects net-snmp prior to 5.9.2. The issue is a buffer overflow in handling the INDEX of NET-SNMP-VACM-MIB, allowing an out-of-bounds memory access to be triggered by a user with read-only credentials. Net-snmp 5.9.2 contains a patch. Public references consistently describe the vul...

8.8CVSS6.6AI score0.01299EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/02/23 11:7 a.m.4 views

OESA-2024-1204 rust security update

Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...

9.8CVSS8.3AI score0.01546EPSS
Exploits0References2
OSV
OSV
added 2024/02/23 11:7 a.m.3 views

OESA-2024-1206 rust security update

Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...

9.8CVSS8.3AI score0.01546EPSS
Exploits0References2
Veracode
Veracode
added 2022/07/25 9:29 a.m.6 views

Buffer Overflow

net-snmp is vulnerable to buffer overflow. The vulnerability exists in the handling of the INDEX of NET-SNMP-VACM-MIB which allows an attacker to cause an out-of-bounds memory access...

8.8CVSS6.6AI score0.01299EPSS
Exploits0References13Affected Software1
OSV
OSV
added 2022/07/08 11:42 a.m.1 views

UBUNTU-CVE-2022-24805

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access. A user with read-only credentials can exploit the issue. Version 5.9.2 contains...

8.8CVSS7.2AI score0.01299EPSS
Exploits0References5
OSV
OSV
added 2022/07/07 8:26 a.m.4 views

CLSA-2022-1657182377 Fixed CVEs in vim: CVE-2022-2129, CVE-2022-2125, CVE-2022-1720, CVE-2022-2124, CVE-2022-2126

CVE-2022-2125: add checking for NUL to avoid running over the end of line - CVE-2022-1720: do not include the NUL in the length to avoid reading past end of line with "gf" in Visual block mode - CVE-2022-2124: add checking for NUL to avoid running over the end of line - CVE-2022-2129: disallow...

7.8CVSS6.9AI score0.02098EPSS
Exploits5References1
Positive Technologies
Positive Technologies
added 2022/07/01 12:0 a.m.1 views

PT-2022-7450 · Net Snmp +8 · Net-Snmp +8

Name of the Vulnerable Software and Affected Versions: net-snmp versions prior to 5.9.2 Description: The issue is related to a buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB, which can cause an out-of-bounds memory access. A user with read-only credentials can exploit this issu...

8.8CVSS7.3AI score0.5346EPSS
Exploits2References123
Rows per page
Query Builder