3093 matches found
CVE-2019-14006
Buffer overflow occur while playing the clip which is nonstandard due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearabl...
CVE-2019-14082
Potential buffer over-read due to lack of bound check of memory offset passed in WLAN firmware in Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074,...
CVE-2025-22791
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in twh offset writing allows Reflected XSS.This issue affects offset writing: from n/a through 1.2...
DEBIAN-CVE-2025-37947
In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent out-of-bounds stream writes by validating pos ksmbdvfsstreamwrite did not validate whether the write offset pos was within the bounds of the existing stream data length vlen. If pos was greater than or equal to vle...
UBUNTU-CVE-2025-37947
In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent out-of-bounds stream writes by validating pos ksmbdvfsstreamwrite did not validate whether the write offset pos was within the bounds of the existing stream data length vlen. If pos was greater than or equal to vle...
CVE-2025-22791
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in twh offset writing allows Reflected XSS.This issue affects offset writing: from n/a through 1.2...
CVE-2025-22791
CVE-2025-22791 : Reflected XSS in twh offset writing (WordPress theme/plugin “offset writing”); affects versions n/a–1.2. Root cause: improper input handling during web page generation leading to reflected script execution. Public sources (NVD, Red Hat, CVE lists) confirm vulnerability exists; Pa...
CVE-2025-22791 WordPress offset writing theme <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in twh offset writing allows Reflected XSS.This issue affects offset writing: from n/a through 1.2...
CVE-2025-22791 WordPress offset writing theme <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in twh offset writing allows Reflected XSS.This issue affects offset writing: from n/a through 1.2...
WordPress plugin offset writing 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in...
PT-2025-22003 · Unknown · Twh Offset Writing
Name of the Vulnerable Software and Affected Versions: twh offset writing versions n/a through 1.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This occurs in the twh offset writing...
SUSE CVE-2025-48174
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size...
UBUNTU-CVE-2025-48174
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size...
CVE-2025-48174
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size...
kernel: erofs/zmap.c: Fix incorrect offset calculation
In the Linux kernel, the following vulnerability has been resolved: erofs/zmap.c: Fix incorrect offset calculation Effective offset to add to length was being incorrectly calculated, which resulted in iomap-length being set to 0, triggering a WARNON in iomapiterdone. Fix that, and describe it in...
kernel: gpio: prevent potential speculation leaks in gpio_device_get_desc()
In the Linux kernel, the following vulnerability has been resolved: gpio: prevent potential speculation leaks in gpiodevicegetdesc Userspace may trigger a speculative read of an address outside the gpio descriptor array. Users can do that by calling gpioioctl with an offset out of range. Offset i...
CVE-2024-45570 Use of Out-of-range Pointer Offset in Camera Driver
Memory corruption may occur during IO configuration processing when the IO port count is invalid...
SUSE CVE-2022-49785
In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Add overflow check in sgxvalidateoffsetlength sgxvalidateoffsetlength function verifies "offset" and "length" arguments provided by userspace, but was missing an overflow check on their addition. Add it...
CVE-2023-53053
In the Linux kernel, the following vulnerability has been resolved: erspan: do not use skbmacheader in ndostartxmit Drivers should not assume skbmacheaderskb == skb-data in their ndostartxmit. Use skbnetworkoffset and skbtransportoffset which better describe what is needed in erspanfbxmit and...
DEBIAN-CVE-2023-53053
In the Linux kernel, the following vulnerability has been resolved: erspan: do not use skbmacheader in ndostartxmit Drivers should not assume skbmacheaderskb == skb-data in their ndostartxmit. Use skbnetworkoffset and skbtransportoffset which better describe what is needed in erspanfbxmit and...