CVE-2022-23817

Insufficient checking of memory buffer in AMD Secure Processor ASP Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address space, potentially resulting in privilege escalation...

CVE-2022-2947

Altair HyperView Player versions 2021.1.0.27 and prior perform operations on a memory buffer but can read from or write to a memory location outside of the intended boundary of the buffer. This hits initially as a read access violation, leading to a memory corruption situation...

CVE-2022-28194

NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrablcbo.c, where, if TFTP is enabled, a local attacker with elevated privileges can cause a memory buffer overflow, which may lead to code execution, loss of Integrity, limited denial of service, and some impact to...

CVE-2024-8938

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a potential arbitrary code execution after a successful Man-In-The-Middle attack followed by sending a crafted Modbus function call to tamper with memory area involved in memory...

The vulnerability of the access profile for the Bluetooth telephony stack in Linux BlueZ allows a attacker to cause a service failure.

The vulnerability of the Bluetooth stack’s phone book access profile in Linux BlueZ is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failure...

The vulnerability of the Linux operating system’s kernel component “perf”, which allows a hacker to trigger a service failure

The vulnerability of the perf component in the Linux operating system’s kernel is related to the operation of writing data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the eeprom component in the Linux operating system’s kernel allows attackers to gain elevated privileges within the system.

The vulnerability of the eeprom component in the Linux operating system’s kernel is related to the operation of the operation outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

SUSE SLES12 Security Update : hplip (SUSE-SU-2025:0290-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0290-1 advisory. This update for hplip fixes the following security issues: - CVE-2020-6923: Fixed a memory buffer overflow in the HP Linux Imaging and Printing HPLIP...

ROS-20250203-07

The vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of memory after its release. memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service via a specially crafted...

SUSE: Security Advisory (SUSE-SU-2025:0290-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Advisory ROSA-SA-2025-2661

software: perl 5.30.3 OS: ROSA-CHROME packageevrstring: perl-5.30.3 CVE-ID: CVE-2023-47100 BDU-ID: 2023-08382 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Sparseunipropstring function of the regcomp.c file of the Perl programming language interpreter is related to an operation exceeding...

The vulnerability of the Substance 3D Stager software lies in the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Substance 3D Stager software-related 3D design software is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created...

The vulnerability of the OLE2 form file analysis component in the Clam Antivirus anti-virus program allows a hacker to trigger a service failure.

The vulnerability of the OLE2 form file analysis component in the Clam Antivirus antivirus program lies in the overflow of memory buffers. Exploiting this vulnerability can allow an attacker to cause a service failure by sending a specially crafted file...

The vulnerability of the Windows operating system’s Telephony Service allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows operating system’s Telephony Service is related to overflowing buffers in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Substance 3D Designer’s texture and material creation software lies in the overflow of buffers in dynamic memory, allowing attackers to execute arbitrary code.

The vulnerability of the Substance 3D Designer’s texture and material creation software is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a hacker to execute arbitrary code in the context of the current user, using a specially created malicious file...

CVE-2024-10498

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

CVE-2024-10498

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

CVE-2024-10498

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in...

CVE-2024-10498

Schneider Electric PowerLogic HDPM6000 is affected (CVE-2024-10498) by CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer. A memory-buffer bounds violation allows a remote attacker to modify configuration values outside the permitted range by sending specific Modbus ...

CVE-2024-11139

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow local attackers to exploit these issues to potentially execute arbitrary code when opening a malicious project file...