Lucene search
K

197 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.5 views

CVE-2024-20093

In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1699...

4.4CVSS6AI score0.00102EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.7 views

CVE-2024-20097

In vdec, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1630...

4.4CVSS5.1AI score0.00099EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:49 a.m.6 views

CVE-2024-20124

In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1568...

4.4CVSS6.2AI score0.00078EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:48 a.m.12 views

CVE-2024-20125

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728...

6.7CVSS7AI score0.00082EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:6 a.m.7 views

CVE-2023-20809

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03751198; Issue ID: DTV03751198...

6.7CVSS6.6AI score0.00085EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:5 a.m.7 views

CVE-2023-20684

In vdec, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07671069; Issue ID: ALPS07671069...

6.4CVSS6.6AI score0.00069EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 3:16 p.m.3 views

DEBIAN-CVE-2022-49887

In the Linux kernel, the following vulnerability has been resolved: media: meson: vdec: fix possible refcount leak in vdecprobe v4l2deviceunregister need to be called to put the refcount got by v4l2deviceregister when vdecprobe fails or vdecremove is called...

5.5CVSS5.5AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 3:16 p.m.12 views

UBUNTU-CVE-2022-49887

In the Linux kernel, the following vulnerability has been resolved: media: meson: vdec: fix possible refcount leak in vdecprobe v4l2deviceunregister need to be called to put the refcount got by v4l2deviceregister when vdecprobe fails or vdecremove is called...

5.5CVSS6.1AI score0.00165EPSS
Exploits0References8
OSV
OSV
added 2025/05/01 2:10 p.m.11 views

CVE-2022-49887 media: meson: vdec: fix possible refcount leak in vdec_probe()

In the Linux kernel, the following vulnerability has been resolved: media: meson: vdec: fix possible refcount leak in vdecprobe v4l2deviceunregister need to be called to put the refcount got by v4l2deviceregister when vdecprobe fails or vdecremove is called...

5.5CVSS5.9AI score0.00165EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.13 views

PT-2025-18604 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A possible refcount leak in the vdec probe function has been resolved. The issue occurs when vdec probe fails or vdec remove is called, and v4l2 device unregister is not called to put...

8.8CVSS7.8AI score0.0129EPSS
Exploits3References465
ATTACKERKB
ATTACKERKB
added 2025/04/07 4:15 a.m.17 views

CVE-2025-20657

In vdec, there is a possible permission bypass due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09486425; Issue ID: MSV-2609...

6.7CVSS5.8AI score0.00087EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/07 12:0 a.m.8 views

PT-2025-15169 · Vdec · Vdec

Name of the Vulnerable Software and Affected Versions: vdec affected versions not specified Description: The issue is related to a possible permission bypass due to improper input validation in vdec. This could lead to local escalation of privilege if a malicious actor has already obtained the...

6.7CVSS6.2AI score0.00087EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/02/27 3:14 a.m.3 views

SUSE CVE-2021-47655

In the Linux kernel, the following vulnerability has been resolved: media: venus: vdec: fixed possible memory leak issue The venushelperallocdpbbufs implementation allows an early return on an error path when checking the id from idaallocmin which would not release the earlier buffer allocation...

5.5CVSS6.6AI score0.00231EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 6:37 a.m.2 views

DEBIAN-CVE-2021-47655

In the Linux kernel, the following vulnerability has been resolved: media: venus: vdec: fixed possible memory leak issue The venushelperallocdpbbufs implementation allows an early return on an error path when checking the id from idaallocmin which would not release the earlier buffer allocation...

5.5CVSS5.6AI score0.00231EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 6:37 a.m.20 views

UBUNTU-CVE-2021-47655

In the Linux kernel, the following vulnerability has been resolved: media: venus: vdec: fixed possible memory leak issue The venushelperallocdpbbufs implementation allows an early return on an error path when checking the id from idaallocmin which would not release the earlier buffer allocation...

5.5CVSS5.9AI score0.00231EPSS
Exploits0References7
NVD
NVD
added 2024/12/02 4:15 a.m.39 views

CVE-2024-20125

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728...

6.7CVSS0.00082EPSS
Exploits0References1
OSV
OSV
added 2024/12/02 4:15 a.m.6 views

CVE-2024-20125

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728...

6.7CVSS5.8AI score0.00082EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/02 3:6 a.m.31 views

CVE-2024-20125

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728...

0.00082EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/02 3:6 a.m.19 views

CVE-2024-20125

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained System privileges. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728...

6.7AI score0.00082EPSS
Exploits0References1
CVE
CVE
added 2024/12/02 3:6 a.m.151 views

CVE-2024-20125

Summary (CVE-2024-20125) : A missing bounds check in MediaTek’s vdec component may allow an out-of-bounds write, enabling local escalation of privilege if an attacker already has System privileges. The entry indicates exploitation requires no user interaction and specifies a patch: ALPS09046782 (...

6.7CVSS6.7AI score0.00082EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder