305 matches found
Out-of-bounds
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS Wi-Fi Protected Setup protocol. Affected Chipsets MT7603E, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915 Affected Software Versions 7.4.0.0; Out-of-bounds read...
PowerCMS XMLRPC API vulnerable to OS command injection
Overview PowerCMS XMLRPC API provided by Alfasado Inc. contains an OS command injection vulnerability CWE-78. Alfasado Inc. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and Alfasado Inc. coordinated under the Information Security Early Warning...
CVE-2021-1981
Possible buffer over read due to improper IE size check of Bearer capability IE in MT setup request from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2021-1981
CVE-2021-1981 involves a buffer over-read caused by an improper Bearer capability IE size check in MT setup requests from the network. It affects Qualcomm/Qualcomm closed‑source components used in Snapdragon platforms, including Snapdragon Auto, Compute, Connectivity, Consumer IOT, Industrial IOT...
mt-news.de Cross Site Scripting vulnerability OBB-2137646
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
CVE-2020-11222
Buffer over read while processing MT SMS with maximum length due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile...
Design/Logic Flaw
Buffer over read while processing MT SMS with maximum length due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile...
CVE-2020-11222
Buffer over read while processing MT SMS with maximum length due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile...
CVE-2020-11222
CVE-2020-11222 is a buffer over-read in Qualcomm Snapdragon components (Auto, Compute, Connectivity, C IoT, Industrial IoT, IoT, Mobile) triggered when processing MT SMS messages at maximum length due to improper length checking. The vulnerability is described across NVD/Red Hat/PRION/CVE lists a...
CVE-2019-12567
Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12568...
CVE-2018-10389
Format string vulnerability in the logMess function in TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet...
CVE-2019-12567
Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-2019-12568...
CVE-2018-10389
Format string vulnerability in the logMess function in TFTP Server MT 1.65 and earlier allows remote attackers to perform a denial of service or execute arbitrary code via format string sequences in a TFTP error packet...
CVE-2019-10500
While processing MT Secondary PDP request, Buffer overflow will happen due to incorrect calculation of buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...
Buffer overflow
While processing MT Secondary PDP request, Buffer overflow will happen due to incorrect calculation of buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...
CVE-2019-10516
CVE-2019-10516 is described as multiple read overflows in MM during decoding of service accept/reject and MT detach, affecting a broad list of Qualcomm Snapdragon platforms (e.g., APQ8009, APQ8017, SDM4xx, SM8x, SXR1130, and other Snapdragon lines). Root cause: read overflow in MM when decoding s...
CVE-2019-10500
While processing MT Secondary PDP request, Buffer overflow will happen due to incorrect calculation of buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...
dav1d/dav1d_fuzzer_mt: Use-of-uninitialized-value in iclip
Project: https://code.videolan.org/videolan/dav1d.git Detailed report: https://oss-fuzz.com/testcase?key=5746740678885376 Project: dav1d Fuzzer: libFuzzerdav1dfuzzermt Fuzz target binary: dav1dfuzzermt Job Type: libfuzzermsandav1d Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...
Oracle VirtualBox Guest-to-Host Escape E1000 Privilege Escalation Vulnerability - Mac OS X
Oracle VirtualBox is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Oracle VirtualBox Guest-to-Host Escape E1000 Privilege Escalation Vulnerability - Linux
Oracle VirtualBox is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...