Lucene search
+L

185 matches found

CNNVD
CNNVD
added 2023/09/04 12:0 a.m.4 views

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of valid range checking in imgsyscmdq, which may result in out-of-bounds reads...

4.2CVSS6.8AI score0.00091EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.6 views

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of MediaTek chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of valid range checking in imgsys, which may result in read and write out-of-bounds conditions...

6.5CVSS6.9AI score0.00094EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.6 views

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of valid range checking in imgsyscmdq, which may result in out-of-bounds reads...

6.5CVSS6.8AI score0.00094EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.6 views

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips that stems from a lack of valid range checking in imgsys, which may result in out-of-bounds reads...

4.2CVSS6.8AI score0.00091EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.6 views

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of MediaTek chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips that stems from a lack of valid range checking in imgsys, which may allow out-of-bounds writes...

6.5CVSS6.8AI score0.00094EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/04 12:0 a.m.5 views

MediaTek Chip Buffer Error Vulnerability

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of valid range checking in imgsyscmdq, which may result in out-of-bounds reads...

4.2CVSS6.8AI score0.00091EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/03 12:0 a.m.7 views

PT-2023-17666 · Mediatek +3 · Mt2713 +5

Name of the Vulnerable Software and Affected Versions: No specific software name and version are mentioned in the provided descriptions. Description: In imgsys cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege wit...

6.5CVSS7.2AI score0.00094EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/09/03 12:0 a.m.11 views

PT-2023-17673 · Unknown · Imgsys Cmdq

Name of the Vulnerable Software and Affected Versions: imgsys cmdq affected versions not specified Description: In imgsys cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User...

6.5CVSS7.2AI score0.00099EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/09/03 12:0 a.m.8 views

PT-2023-17665 · Imgsys · Imgsys

Name of the Vulnerable Software and Affected Versions: imgsys affected versions not specified Description: The issue is related to a possible out of bounds write due to missing valid range checking in imgsys. This could lead to local escalation of privilege, requiring System execution privileges...

6.5CVSS7AI score0.00094EPSS
Exploits0References6
Code423n4
Code423n4
added 2023/06/09 12:0 a.m.14 views

Potential Integer Overflow/Underflow

Lines of code Vulnerability details Impact The functions insertSDPrice and getMedianValue manipulate arrays of uint256 values without explicitly checking for integer overflow or underflow. If the array lengths or calculations exceed the maximum or minimum values of uint256, it can result in...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: ext4: fix potential out of bound read in ext4_fc_replay_scan()

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential out of bound read in ext4fcreplayscan For scan loop must ensure that at least EXT4FCTAGBASELEN space. If remain space less than EXT4FCTAGBASELEN which will lead to out of bound read when mounting corrupt file...

7.1CVSS6.7AI score0.00147EPSS
Exploits0References5
Prion
Prion
added 2023/03/27 9:15 p.m.13 views

Buffer overflow

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

2.6CVSS5.9AI score0.00553EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/03/27 8:43 p.m.42 views

CVE-2023-28638 Stack references to locations outside buffers may become invalid if they exist during a GC compaction in Snappier

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

7CVSS7.2AI score0.00553EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/14 12:0 a.m.5 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 111, which stems from an issue in Firefox when accessing restricted streams requires checking that the number of available bytes is i...

6.5CVSS7.8AI score0.0061EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.19 views

Debian: Security Advisory (DLA-383-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02554EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.3 views

SUSE CVE-2008-0007

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset...

7.2CVSS6.5AI score0.00494EPSS
Exploits2References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:12 a.m.3 views

SUSE CVE-2015-8078

Integer overflow in the indexurlfetch function in imap/index.c in Cyrus IMAP 2.3.19, 2.4.18, and 2.5.6 allows remote attackers to have unspecified impact via vectors related to urlfetch range checks and the sectionoffset variable. NOTE: this vulnerability exists because of an incomplete fix for...

7.5CVSS9.8AI score0.02753EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:57 a.m.3 views

SUSE CVE-2016-7951

Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks...

9.8CVSS7.1AI score0.02435EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.2 views

PT-2022-33273 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue concerns array range checking for poke descriptors in the bpf module. It was introduced in version v5.5 and fixed in version v5.19.6. The actual impact and attack plausibility have...

7.3AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/25 6:15 p.m.9 views

CVE-2022-32742

A flaw was found in Samba. Some SMB1 write requests were not correctly range-checked to ensure the client had sent enough data to fulfill the write, allowing server memory contents to be written into the file or printer instead of client-supplied data. The client cannot control the area of the...

4.3CVSS6.5AI score0.0099EPSS
Exploits0References4
Rows per page
Query Builder