CVE-2019-14012

Possibility of null pointer deference as the array of video codecs from media info is referenced without null checking while processing SDP messages in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MSM8905,...

CVE-2019-10550

Buffer Over-read when UE is trying to process the message received form the network without zero termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909,...

CVE-2025-20152

A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of certain RADIUS requests. An attacker...

CVE-2025-20152 ISE restart

A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of certain RADIUS requests. An attacker...

CVE-2025-20152

CVE-2025-20152 is a Cisco ISE vulnerability in the RADIUS message processing path. An unauthenticated, remote attacker can trigger a DoS by sending crafted RADIUS requests, potentially causing Cisco ISE to reload. The issue is tied to improper handling of certain RADIUS messages. Affected product...

CVE-2025-20152 ISE restart

A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of certain RADIUS requests. An attacker...

The vulnerability in the message processing function of the RADIUS authentication, authorization, and accounting protocol implemented by the Cisco Identity Services Engine (ISE) platform for network connection policy management allows a perpetrator to cause a denial-of-service attack on a network access device (NAD).

The vulnerability of the message processing function in the implementation of the RADIUS authentication, authorization, and accounting protocol of the Cisco Identity Services Engine ISE platform is related to reading data beyond the buffer in memory. Exploiting this vulnerability could allow a...

CVE-2025-21460

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously...

CVE-2025-21460

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously...

CVE-2025-21460

CVE-2025-21460 describes memory corruption in a Qualcomm chipset-based automotive software platform built on QNX. The vulnerability occurs while processing a message where a buffer is controlled by a Guest VM, allowing the value to be changed continuously and potentially triggering corruption. CV...

TOTOLINK CA600-PoE 安全漏洞

TOTOLINK CA600-PoE is an outdoor wireless AP/CPE device from China Gion Electronics TOTOLINK. TOTOLINK CA600-PoE suffers from a command injection vulnerability that stems from the msgprocess function Port parameter failing to correctly filter construct command special characters, commands, etc. N...

PT-2025-22379 · Cisco · Cisco Identity Services Engine

Name of the Vulnerable Software and Affected Versions: Cisco Identity Services Engine ISE version 3.4 Description: A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause a denial of service DoS...

CVE-2024-53028

Memory corruption may occur while processing message from frontend during allocation...

CVE-2024-53028

CVE-2024-53028 is tied to memory corruption that occurs while processing frontend messages during allocation in Qualcomm chipsets. Public references describe a memory corruption condition with high impact on confidentiality, integrity, and availability; attack vector is local with low privileges ...

CVE-2024-53028 Time-of-check Time-of-use (TOCTOU) Race Condition in Automotive Vehicle Networks

Memory corruption may occur while processing message from frontend during allocation...

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that originates from a memory corruption when processing input messages passed from the FE driver...

BIT-MATTERMOST-2024-2446

Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to limit the number of @-mentions processed per message, allowing an authenticated attacker to crash the client applications of other users via large, crafted messages...

CentOS 7 : squid (RHSA-2024:1787)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1787 advisory. - Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4...

ROS-20241001-02

Vulnerability of html/template package of Golang programming language is related to incorrect handling of &ltscript&gt occurrences of &ltscript&gt, &lt!--&gt and &lt/script&gt in JS literals in &ltscript&gt contexts. Exploitation vulnerability could allow an attacker acting remotely to perform an...

CVE-2024-31919

IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS and 9.3 CD, in certain configurations, is vulnerable to a denial of service attack caused by an error processing messages when an API Exit using MQBUFMH is used. IBM X-Force ID: 290259...