594 matches found
CVE-2025-8090
Null pointer dereference in the MsgRegisterEvent system call could allow an attacker with local access and code execution abilities to crash the QNX Neutrino kernel...
CVE-2025-8090
CVE-2025-8090 describes a null pointer dereference in the MsgRegisterEvent() system call of the QNX Neutrino Kernel . Public details in connected sources indicate vulnerability within QNX SDP 7.1/7.0 and QNX OS for Safety 2.0–2.2, with an attacker able to gain local access and code execution to c...
CVE-2025-41739
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...
EUVD-2025-199976
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...
CVE-2025-41739
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...
CVE-2025-41739
CVE-2025-41739 affects the CODESYS Control runtime system (Linux and QNX). The issue is a race-condition in the system’s communication servers that allows an unauthenticated, remote attacker to trigger an out-of-bounds read via crafted socket communication, potentially leading to a denial of serv...
CVE-2025-41739 CODESYS Control - Linux/QNX SysSocket flaw
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...
CVE-2025-41739 CODESYS Control - Linux/QNX SysSocket flaw
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...
PT-2025-48434
An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service...
CODESYS Control 缓冲区错误漏洞
CODESYS Control is a suite of industrial control program programming software from CODESYS, Germany. CODESYS Control suffers from a buffer error vulnerability that originates from a contention that can be exploited by an unauthenticated, remote attacker to trigger an out-of-bounds read in the...
CVE-2025-47361
The CVE-2025-47361 issue affects an Automotive Software platform based on QNX. The root cause is improper validation of an array index that triggers a subsystem crash, causing memory corruption when an out-of-range identifier is used. Impact is described as memory corruption with high severity (C...
CVE-2025-47361 Improper Validation of Array Index in Automotive Software platform based on QNX
Memory corruption when triggering a subsystem crash with an out-of-range identifier...
CVE-2025-47360
CVE-2025-47360 affects an Automotive Software platform based on QNX. The issue is memory corruption (described as a stack-based buffer overflow) occurring while processing client messages during device management, with local attack vector and high impact on confidentiality, integrity, and availab...
CVE-2025-47353
Summary: CVE-2025-47353 describes a memory corruption issue in an Automotive Software platform based on QNX used by Qualcomm, triggered by processing requests sent from GVM. The CVSS 3.1 base score is 7.8 (High) with local attack vector, low attack complexity, and no privileges or user interactio...
CVE-2025-47353 Exposed Dangerous Method or Function in Automotive Software platform based on QNX
Memory corruption while processing request sent from GVM...
PT-2025-44925
Name of the Vulnerable Software and Affected Versions Automotive Software platform based on QNX affected versions not specified Description A memory corruption issue exists when processing requests originating from GVM. The issue involves a dangerous method or function within the software platfor...
PT-2025-44928
Name of the Vulnerable Software and Affected Versions Automotive Software platform based on QNX affected versions not specified Description A memory corruption issue exists when triggering a subsystem crash with an out-of-range identifier. The issue involves improper validation of an array index...
CVE-2025-47347
CVE-2025-47347 affects an automotive software platform based on QNX and Qualcomm chipsets. The issue is described as a memory corruption (also reflected as a stack-based overflow in some listings) occurring while processing control commands in the virtual memory management interface, indicating a...
EUVD-2017-13009
Malware in sbrugna...
EUVD-2004-1677
Malware in sbrugna...