Lucene search
+L

324 matches found

prion
prion
added 2022/05/03 3:15 a.m.24 views

Integer overflow

In libxml2 before 2.9.14, several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software using libxml2's buffer...

4.3CVSS7.5AI score0.0363EPSS
Exploits5References14Affected Software5
cnnvd
cnnvd
added 2022/05/03 12:0 a.m.2 views

libxslt和libxml2 输入验证错误漏洞

libxslt is an XSLT XML Language for Defining XML Transformations C library. libxml2 is an open source library for parsing XML documents. It is written in C and can be called by many languages, such as C, C++, XSH. An input validation error vulnerability exists in libxml2 versions prior to 2.9.14...

6.5CVSS7.4AI score0.0363EPSS
Exploits5References56
osv
osv
added 2022/05/03 12:0 a.m.33 views

CVE-2022-29824

In libxml2 before 2.9.14, several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other software using libxml2's buffer...

6.5CVSS2.7AI score0.0363EPSS
Exploits5References16
cnvd
cnvd
added 2022/02/15 12:0 a.m.24 views

Google Android Buffer Overflow Vulnerability (CNVD-2022-16338)

Google Android is a Linux-based open-source operating system from Google, Inc. The Google Android buffer overflow vulnerability stems from improper boundary checking. An attacker could exploit the vulnerability to perform arbitrary memory writes and code execution...

4.6CVSS5.4AI score0.00117EPSS
Exploits0
cnvd
cnvd
added 2022/02/15 12:0 a.m.37 views

Google Android Input Validation Error Vulnerability (CNVD-2022-16337)

Google Android is a Linux-based open source operating system from Google, Inc. The Google Android input validation error vulnerability stems from incorrect input validation. An attacker could exploit the vulnerability to perform arbitrary memory writes and code execution...

4.6CVSS3.9AI score0.00117EPSS
Exploits0
cnvd
cnvd
added 2022/02/15 12:0 a.m.30 views

Google Android arbitrary memory write vulnerability

Google Android is a Linux-based open-source operating system from Google, Inc. Google Android is vulnerable to arbitrary memory writes, which can be exploited by attackers to perform arbitrary memory writes and code execution due to incorrect boundary checking in the edenruntime hal service...

7.2CVSS5.5AI score0.00152EPSS
Exploits0
cnnvd
cnnvd
added 2022/02/11 12:0 a.m.6 views

Google Android 安全漏洞

Google Android is a Linux-based open-source operating system from Google, Inc. Google Android is vulnerable to arbitrary memory writes, which can be exploited by attackers to perform arbitrary memory writes and code execution due to incorrect boundary checking in the edenruntime hal service...

8.4CVSS6.4AI score0.00152EPSS
Exploits0References2
cnnvd
cnnvd
added 2022/02/11 12:0 a.m.5 views

Samsung Mobile 缓冲区错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. The Google Android input validation error vulnerability stems from incorrect input validation. An attacker could exploit the vulnerability to perform arbitrary memory writes and code execution...

6.7CVSS6.1AI score0.00117EPSS
Exploits0References2
cnnvd
cnnvd
added 2022/02/11 12:0 a.m.8 views

Google Android 安全漏洞

Google Android is a Linux-based open-source operating system from Google, Inc. The Google Android buffer overflow vulnerability stems from improper boundary checking. An attacker could exploit the vulnerability to perform arbitrary memory writes and code execution...

6.7CVSS6.5AI score0.00117EPSS
Exploits0References2
cnnvd
cnnvd
added 2022/02/07 12:0 a.m.6 views

Nvidia GPU Display Driver for Linux 安全漏洞

Nvidia GPU Display Driver for Linux is a driver from Nvidia Corporation that is used for interactive support of graphics card display modules in Linux systems. A security vulnerability exists in Nvidia GPU Display Driver for Linux, which can be exploited by an attacker to cause a denial of servic...

6.1CVSS6.2AI score0.00232EPSS
Exploits0References7
cnnvd
cnnvd
added 2022/01/10 12:0 a.m.6 views

Samsung NPU driver 安全漏洞

Samsung NPU driver is a neural network processor from Samsung South Korea. A security vulnerability exists in Samsung Mobile's NPU driver prior to SMR Jan-2022 Release 1, which arises from improper checking or handling of exceptions in the NPU driver, allowing arbitrary memory writes and code...

7.8CVSS7.9AI score0.00392EPSS
Exploits0References2
cnvd
cnvd
added 2021/10/11 12:0 a.m.21 views

Samsung Notes libSPenBase buffer overflow vulnerability (CNVD-2022-86539)

Samsung Notes is an application from Samsung South Korea. It is used to provide a recording function. A buffer overflow vulnerability exists in Samsung Note versions prior to 4.3.02.61, which stems from a lack of buffer bounds checking in the libSPenBase library, and can be exploited by a remote...

7.8CVSS7.8AI score0.00274EPSS
Exploits0References1
cnvd
cnvd
added 2021/10/11 12:0 a.m.24 views

Samsung Notes libSPenBase buffer overflow vulnerability (CNVD-2022-86540)

Samsung Notes is an application from Samsung South Korea. It is used to provide a recording function. A buffer overflow vulnerability exists in versions prior to Samsung Note 4.3.02.61, which stems from a lack of buffer bounds checking in the libSPenBase library, and can be exploited by a remote...

7.8CVSS7.8AI score0.00282EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/10/06 12:0 a.m.6 views

Samsung Notes 缓冲区错误漏洞

Samsung Notes is an application from Samsung South Korea. It is used to provide a recording function. A buffer overflow vulnerability exists in Samsung Note versions prior to 4.3.02.61, which stems from a lack of buffer bounds checking in the libSPenBase library, and can be exploited by a remote...

7.8CVSS8AI score0.00274EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/10/06 12:0 a.m.7 views

Samsung Notes 缓冲区错误漏洞

Samsung Notes is an application from Samsung South Korea. It is used to provide a recording function. A buffer overflow vulnerability exists in versions prior to Samsung Note 4.3.02.61, which stems from a lack of buffer bounds checking in the libSPenBase library, and can be exploited by a remote...

7.8CVSS8AI score0.00282EPSS
Exploits0References2
osv
osv
added 2021/09/08 3:15 p.m.3 views

CVE-2021-30714

A race condition was addressed with improved state handling. This issue is fixed in iOS 14.6 and iPadOS 14.6. An application may be able to cause unexpected system termination or write kernel memory...

6.3CVSS6.6AI score0.00514EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/09/01 12:0 a.m.1 views

Tuxera NTFS-3G 缓冲区错误漏洞

Tuxera NTFS-3G is Finland's Tuxera company's set of open source , cross-platform for supporting NTFS partition read and write drivers . NTFS-3G suffers from a buffer overflow vulnerability that can be exploited by an attacker to potentially cause a heap buffer overflow and allow arbitrary memory...

7.8CVSS6.3AI score0.00414EPSS
Exploits0References17
cnnvd
cnnvd
added 2021/06/11 12:0 a.m.5 views

Samsung SMR 缓冲区错误漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability exists in SMR JUN-2021 Release 1, which stems from a possible out-of-bounds write vulnerability in the application's NPU driver that allows arbitrary memor...

7.8CVSS7.5AI score0.00171EPSS
Exploits0References3
cnnvd
cnnvd
added 2021/06/11 12:0 a.m.4 views

Samsung SMR 缓冲区错误漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung cell phone applications. A security vulnerability exists in SMR MAY-2021 Release 1, which stems from an incorrect input validation vulnerability in the application's NPU firmware that allows arbitrary...

6.7CVSS7AI score0.00128EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/06/11 12:0 a.m.3 views

Samsung SMR 安全漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability existed prior to SMR june -2021 Release 1 that allowed arbitrary memory writes and code execution...

7.8CVSS7.7AI score0.00133EPSS
Exploits0References1
Rows per page
Query Builder