CVE-2025-47404 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

Tenda AC6 安全漏洞

Tenda AC6 is a wireless router produced by the Chinese company Tenda. The Tenda AC6V2.0 V15.03.06.23multi version has a security vulnerability. This vulnerability stems from the lack of size checking in the/goform/WifiWpsStart component, which may lead to a stack overflow issue...

CVE-2025-70252

An issue was discovered in /goform/WifiWpsStart in Tenda AC6V2.0 V15.03.06.23multi. The index and mode are controllable. If the conditions are met to sprintf, they will be spliced into tmp. It is worth noting that there is no size check,which leads to a stack overflow vulnerability...

PT-2026-21326

Name of the Vulnerable Software and Affected Versions SAIL affected versions not specified Description SAIL is a cross-platform library used for loading and saving images, supporting animation, metadata, and ICC profiles. The software contains a flaw due to the XWD parser's handling of the bytes...

CVE-2018-21065

An issue was discovered on Samsung mobile devices with M6.0, N7.x, and O8.x software. There is an integer underflow in eCryptFS because of a missing size check. The Samsung ID is SVE-2017-11855 August 2018...

CVE-2021-0878

In PVRSRVBridgeServerSyncGetStatus of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50282)

drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread Avoid a possible buffer overflow if size is larger than 4K. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

EUVD-2025-34216

APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without Checking Size of Input by local accessing. Successful exploitation of this vulnerability may lead to arbitrary code execution...

EUVD-2019-2375

Malware in sbrugna...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the /goform/setMacFilterCfg component in the Tenda TX3 router software, which involves copying buffers without checking the size of the input data, allows an attacker to compromise the accessibility of protected information.

The vulnerability of the /goform/setMacFilterCfg component in the Tenda TX3 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...

CVE-2021-0874

In PVRSRVBridgeDevicememHistorySparseChange of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction i...

CVE-2019-10571

Snapshot of IB can lead to invalid address access due to missing check for size in the related function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

The vulnerability of the cifs_strndup_from_utf16() function in the /fs/smb/client/reparse.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cifsstrndupfromutf16 function in the /fs/smb/client/reparse.c module of the Linux kernel involves copying buffers without checking their size—a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

Azure Linux 3.0 Security Update: kernel (CVE-2024-25739)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25739 advisory. - createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a missing size check in the amdgpudebugfsgprwaveread function. No details of the vulnerability are provided ...

Grassroot DICOM JPEG2000Codec::DecodeByStreamsCommon out-of-bounds write vulnerability

Talos Vulnerability Report TALOS-2024-1935 Grassroot DICOM JPEG2000Codec::DecodeByStreamsCommon out-of-bounds write vulnerability April 25, 2024 CVE Number CVE-2024-22373 SUMMARY An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu...

The vulnerability of the QuTS hero, QTS, and QuTScloud operating systems for network devices from Qnap occurs due to the copying of buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of the QuTS hero, QTS, and QuTScloud network devices from Qnap operating systems is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Unbreakable Enterprise kernel security update

5.15.0-203.146.5.1 - Revert 'selftests/bpf: Test tail call counting with bpf2bpf and data on stack' Samasth Norway Ananda Orabug: 36277693 - Revert 'tcp: fix excessive TLP and RACK timeouts from HZ rounding' Sherry Yang Orabug: 36277684 5.15.0-203.146.5 - i2c: core: Fix atomic xfer check for...