CVE-2024-23356 Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS

Memory corruption during session sign renewal request calls in HLOS...

CVE-2024-23355

CVE-2024-23355 describes memory corruption in the keymaster subsystem when a shared key is imported. Public references point to Qualcomm/Android ecosystems (Keymaster) with a local attack vector, low privileges required and no user interaction, but no concrete fix version is specified in the prov...

CVE-2024-23355 Improper Restriction of Operations within the Bounds of a Memory Buffer in Automotive

Memory corruption when keymaster operation imports a shared key...

CVE-2024-21481

CVE-2024-21481 involves memory corruption during the preparation of a shared memory notification for a memparcel in Resource Manager. The issue is described as a memory corruption flaw, with no publicly documented exploitation details in the provided sources. The connected documents reference the...

CVE-2024-21481 Improper Restriction of Operations within the Bounds of a Memory Buffer in Hypervisor

Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that arises from an improperly restricted operation within a memory buffer contained in the Automotive module...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that arises from the HLOS module containing an improperly restricted operation within a memory buffer...

The vulnerability of the RouteStatic function in the microprogramming software for Tenda FH1201 allows a hacker to execute arbitrary code.

The vulnerability of the RouteStatic function in the microprogramming software for Tenda FH1201 relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Angusj Resource_Hacker

CVE-2024-1112 - This is a PoC, I wrote for "ResHacker.exe" He...

Advisory ROSA-SA-2024-2460

software: gnuplot 5.4.10 OS: ROSA-CHROME packageevrstring: gnuplot-5.4.10-1 CVE-ID: CVE-2020-25412 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: comline in command.c in gnuplot causes writes outside the memory buffer from strncpy, which may lead to arbitrary code execution. CVE-STATUS: Fixed CVE-REV...

The vulnerability of embedded software developed by Qualcomm, related to operations that occur outside of the buffer in memory, allows attackers to disclose protected information or cause system failures.

The vulnerability of embedded Qualcomm software is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose protected information or cause system failures...

The vulnerability of the Layout component in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.

The vulnerability of the Layout component in Google Chrome and Microsoft Edge is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the I/O Trace Tool (formerly NI-Spy) detection and analysis utility for applications within the System Configuration package allows a hacker to execute arbitrary code by causing an operation to go beyond the buffer boundaries in memory.

The vulnerability of the I/O Trace Tool formerly NI-Spy detection and analysis utility in the System Configuration package is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a attacker to execute arbitrary code using a specially...

ROS-20240729-06

A vulnerability in the TLS and SSL protocol implementation of the Mbed TLS software is related to the ability to of writing outside of the buffer. Exploitation of the vulnerability could allow an attacker acting remotely, overwrite data in the memory buffer and recover a private RSA key...

National Instruments LabVIEW

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION : Low attack complexity Vendor : National Instruments Equipment : LabVIEW Vulnerabilities : Out-of-Bounds Read, Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of these...

The vulnerability of the NetScaler Console delivery management service (previously known as NetScaler ADM), the NetScaler SDX (SVM) virtual machine deployment and management platform, and the NetScaler Agent, arises from allowing operations to occur outside of the buffer in memory. This allows an attacker to trigger a service failure.

The vulnerability of the NetScaler Console delivery management service previously known as NetScaler ADM, the NetScaler SDX SVM virtual machine deployment and management platform, and the NetScaler Agent is related to the execution of operations outside the buffer in memory. Exploiting this...

The vulnerability of the wireless adapter for Xbox Windows operating systems, allowing a hacker to execute arbitrary code

The vulnerability of the wireless adapter in Xbox Windows operating systems relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious link or malicious file...

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of Juniper Networks’ Junos OS operating system in MX and EX9200 devices, related to operations that go beyond the buffer in memory, allows attackers to cause service interruptions.

The vulnerability of Juniper Networks’ Junos OS operating system in MX and EX9200 devices is related to operations that occur outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems allows a perpetrator to trigger a service failure.

The vulnerability of the Remote Desktop Licensing Service for Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...