ipmi-oem in FreeIPMI before 1.6.18 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface (IPMI) specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system management. It is most commonly used for sensor reading (e.g., CPU temperatures through the ipmi-sensors command within FreeIPMI) and remote power control (the ipmipower command). The ipmi-oem client command implements a set of a IPMI OEM commands for specific hardware vendors. If a user has supported hardware, they may wish to use the ipmi-oem command to send a request to a server to retrieve specific information. Two subcommands "ipmi-oem dell get-active-directory-config" and "ipmi-oem fujitsu get-sel-entry-long-text" were found to have exploitable buffer overflows on response messages.

...

CVE-2025-47395

Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that could result in a transient denial of service when parsing WLAN management frames that contain vendor-specific information elements...

CVE-2025-47395 Buffer Over-read in WLAN Firmware

Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element...

CVE-2025-47395 Buffer Over-read in WLAN Firmware

Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element...

EUVD-2016-1642

Malware in sbrugna...

EUVD-2004-0958

Malware in sbrugna...

EUVD-2021-21773

Malware in sbrugna...

EUVD-2018-4021

Malware in sbrugna...

EUVD-2017-6360

Malware in sbrugna...

EUVD-2023-37269

Malicious code in bioql PyPI...

EUVD-2025-20487

Malicious code in bioql PyPI...

CVE-2025-21446

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests...

CVE-2025-21446

Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests...

CVE-2025-21446

CVE-2025-21446 affects Qualcomm chipsets where WLAN frame processing for BTM requests can trigger a transient Denial-of-Service when parsing vendor-specific information elements. The root cause is improper handling of vendor IEs in the WLAN firmware during BTM parsing, leading to resource exhaust...

CVE-2023-33080

Transient DOS while parsing a vender specific IE Information Element of reassociation response management frame...

CVE-2023-20972

In btmvendorspecificevt of btmdevctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

CVE-2013-2220

Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...

CVE-2021-35129

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

CVE-2024-53048

In the Linux kernel, the following vulnerability has been resolved: ice: fix crash on probe for DPLL enabled E810 LOM The E810 Lan On Motherboard LOM design is vendor specific. Intel provides the reference design, but it is up to vendor on the final product design. For some cases, like Linux DPLL...