The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of embedded software developed for Qualcomm chips lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of embedded software developed for Qualcomm chips lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client on Android operating systems arises from operations that occur outside of the buffer in memory. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the Mozilla Firefox browser and the Thunderbird email client on Android operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of TOTOLINK N150RT router microprogramming software, related to the execution of operations outside the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of TOTOLINK N150RT router microprogramming software lies in the fact that the operation values are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

CVE-2025-23159 media: venus: hfi: add a check to handle OOB in sfr region

In the Linux kernel, the following vulnerability has been resolved: media: venus: hfi: add a check to handle OOB in sfr region sfr-bufsize is in shared memory and can be modified by malicious user. OOB write is possible when the size is made higher than actual sfr data buffer. Cap the size to...

The vulnerability of the RPAC component in operating systems such as MacOS Sequoia, tvOS, visionOS, iOS, and iPadOS allows attackers to circumvent existing security restrictions.

The vulnerability of the RPAC component in macOS Sequoia, tvOS, visionOS, iOS, and iPadOS relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...

The vulnerability of Tenda AC15 router’s microprogramming software, related to reading data outside the buffer in memory, allows a hacker to cause a service failure.

The vulnerability of the Tenda AC15 router’s microprogramming software is related to reading data outside the buffer in memory when processing the wepkey1 parameter. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the ability to write code beyond the buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the ability to write beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in the ability to write code beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of software for discrete event simulation and automation in Rockwell Automation Arena lies in the writing beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created DOE file...

CVE-2025-22049 LoongArch: Increase ARCH_DMA_MINALIGN up to 16

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Increase ARCHDMAMINALIGN up to 16 ARCHDMAMINALIGN is 1 by default, but some LoongArch-specific devices such as APBDMA require 16 bytes alignment. When the data buffer length is too small, the hardware may make an error...

Rockwell Automation Arena < 16.20.09 Multiple Vulnerabilities

The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.09. It is, therefore, affected by a multiple vulnerabilities - A local code execution vulnerability exists in the affected products due to an uninitialized pointer. The flaw is result of improper...

The vulnerability of the tdhttpd service in the microprogramming software for Tenda AX1806 allows a hacker to cause a service failure.

The vulnerability of the tdhttpd service in the microprogramming-based router software of Tenda AX1806 relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

The vulnerability of the OpenSearch software package, related to reading data beyond the buffer in memory, allows a intruder to gain unauthorized access to protected information.

Vulnerability of the OpenSearch software package, related to reading data beyond the buffer in memory. Exploitation of this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The vulnerability of the Linux operating system’s kernel Wi-Fi component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s kernel Wi-Fi component relates to the operation of data out of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the jfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the jfs component in the Linux operating system’s kernel involves reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Network File System (NFS) of the PowerScale OneFS operating system, which allows a hacker to compromise the integrity of the protected information.

The vulnerability of the Network File System NFS of the PowerScale OneFS operating system is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of the protected information...

Microsoft Edge browser’s vulnerability, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Edge relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the NTFS file system in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the NTFS file system in Windows operating systems relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

CVE-2025-3285

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...

CVE-2025-3288

A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute...