Total
412 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-53806 | 1 Microsoft | 7 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 4 more | 2025-10-02 | N/A | 6.5 MEDIUM |
|
Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
|
|||||
| CVE-2025-54901 | 1 Microsoft | 4 365 Apps, Excel, Office and 1 more | 2025-10-01 | N/A | 5.5 MEDIUM |
|
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
|
|||||
| CVE-2025-27057 | 1 Qualcomm | 422 Ar8035, Ar8035 Firmware, Csr8811 and 419 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling beacon frames with invalid IE header length.
|
|||||
| CVE-2025-27030 | 1 Qualcomm | 82 C-v2x 9150, C-v2x 9150 Firmware, Qam8295p and 79 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
information disclosure while invoking calibration data from user space to update firmware size.
|
|||||
| CVE-2025-27033 | 1 Qualcomm | 64 Qca6698aq, Qca6698aq Firmware, Qcm5430 and 61 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
Information disclosure while running video usecase having rogue firmware.
|
|||||
| CVE-2025-27036 | 1 Qualcomm | 42 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 39 more | 2025-09-25 | N/A | 6.1 MEDIUM |
|
Information disclosure when Video engine escape input data is less than expected minimum size.
|
|||||
| CVE-2025-47317 | 1 Qualcomm | 106 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 103 more | 2025-09-25 | N/A | 7.8 HIGH |
|
Memory corruption due to global buffer overflow when a test command uses an invalid payload type.
|
|||||
| CVE-2025-47326 | 1 Qualcomm | 240 Ar8035, Ar8035 Firmware, Csr8811 and 237 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while handling command data during power control processing.
|
|||||
| CVE-2025-47328 | 1 Qualcomm | 134 Fastconnect 7800, Fastconnect 7800 Firmware, Immersive Home 3210 Platform and 131 more | 2025-09-25 | N/A | 7.5 HIGH |
|
Transient DOS while processing power control requests with invalid antenna or stream values.
|
|||||
| CVE-2024-12975 | 2025-09-16 | N/A | N/A | ||
|
A buffer overread can occur in the CPC application when operating in full duplex SPI upon receiving an invalid packet over the SPI interface.
|
|||||
| CVE-2025-36855 | 2025-09-08 | N/A | 8.8 HIGH | ||
|
A vulnerability ( CVE-2025-21176 https://www.cve.org/CVERecord ) exists in DiaSymReader.dll due to buffer over-read.
Per CWE-126: Buffer Over-read https://cwe.mitre.org/data/definitions/126.html , Buffer Over-read is when a product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.
This issue affects EOL ASP.NET 6.0.0 <= 6.0.36 as represented in this CVE, as well as 8.0.0 <= 8.0.11 & <= 9.0.0 as represen ...
Show More |
|||||
| CVE-2024-30039 | 1 Microsoft | 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more | 2025-08-27 | N/A | 5.5 MEDIUM |
|
Windows Remote Access Connection Manager Information Disclosure Vulnerability
|
|||||
| CVE-2025-27029 | 1 Qualcomm | 134 Fastconnect 7800, Fastconnect 7800 Firmware, Immersive Home 3210 Platform and 131 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.
|
|||||
| CVE-2024-53019 | 1 Qualcomm | 162 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6700 and 159 more | 2025-08-20 | N/A | 8.2 HIGH |
|
Information disclosure may occur while decoding the RTP packet with improper header length for number of contributing sources.
|
|||||
| CVE-2025-27065 | 1 Qualcomm | 300 Ar8035, Ar8035 Firmware, Fastconnect 6800 and 297 more | 2025-08-20 | N/A | 7.5 HIGH |
|
Transient DOS while processing a frame with malformed shared-key descriptor.
|
|||||
| CVE-2025-21421 | 1 Qualcomm | 90 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 87 more | 2025-08-19 | N/A | 7.8 HIGH |
|
Memory corruption while processing escape code in API.
|
|||||
| CVE-2025-21457 | 1 Qualcomm | 30 Ar8035, Ar8035 Firmware, Fastconnect 7800 and 27 more | 2025-08-19 | N/A | 6.1 MEDIUM |
|
Information disclosure while opening a fastrpc session when domain is not sanitized.
|
|||||
| CVE-2025-27068 | 1 Qualcomm | 32 Fastconnect 6200, Fastconnect 6200 Firmware, Fastconnect 6900 and 29 more | 2025-08-18 | N/A | 7.8 HIGH |
|
Memory corruption while processing an IOCTL command with an arbitrary address.
|
|||||
| CVE-2025-53736 | 1 Microsoft | 6 365 Apps, Office, Office Long Term Servicing Channel and 3 more | 2025-08-18 | N/A | 6.8 MEDIUM |
|
Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
|
|||||
| CVE-2024-21459 | 1 Qualcomm | 350 Ar8035, Ar8035 Firmware, Ar9380 and 347 more | 2025-08-15 | N/A | 6.5 MEDIUM |
|
Information disclosure while handling beacon or probe response frame in STA.
|
|||||
| CVE-2021-34584 | 2 Codesys, Wago | 55 Codesys, 750-8202, 750-8202 Firmware and 52 more | 2025-08-15 | 6.4 MEDIUM | 9.1 CRITICAL |
|
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.
|
|||||
| CVE-2024-52877 | 1 Insyde | 1 Insydeh2o | 2025-08-15 | N/A | 7.5 HIGH |
|
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, callback function SmmCreateVariableLockList () calls CreateVariableLockListInSmm (). In CreateVariableLockListInSmm (), it uses StrSize () to get variable name size and it could lead to a buffer over-read.
|
|||||
| CVE-2024-52878 | 1 Insyde | 1 Insydeh2o | 2025-08-15 | N/A | 7.5 HIGH |
|
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, VariableServicesSetVariable () can be called by gRT_>SetVariable () or the SmmSetSensitiveVariable () or SmmInternalSetVariable () from SMM. In VariableServicesSetVariable (), it uses StrSize () to get vari ...
Show More |
|||||
| CVE-2024-52879 | 1 Insyde | 1 Insydeh2o | 2025-08-15 | N/A | 7.5 HIGH |
|
An issue was discovered in Insyde InsydeH2O kernel 5.2 before version 05.29.50, kernel 5.3 before version 05.38.50, kernel 5.4 before version 05.46.50, kernel 5.5 before version 05.54.50, kernel 5.6 before version 05.61.50, and kernel 5.7 before version 05.70.50. In VariableRuntimeDxe driver, SmmUpdateVariablePropertySmi () is a SMM callback function and it uses StrCmp () to compare variable names. This action may cause a buffer over-read.
|
|||||
| CVE-2023-28566 | 1 Qualcomm | 250 Aqt1000, Aqt1000 Firmware, Csrb31024 and 247 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in WLAN HAL while handling the WMI state info command.
|
|||||
| CVE-2023-28542 | 1 Qualcomm | 376 315 5g Iot, 315 5g Iot Firmware, Apq8064au and 373 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in WLAN HOST while fetching TX status information.
|
|||||
| CVE-2023-28541 | 1 Qualcomm | 398 Aqt1000, Aqt1000 Firmware, Ar8031 and 395 more | 2025-08-11 | N/A | 7.8 HIGH |
|
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
|
|||||
| CVE-2023-28571 | 1 Qualcomm | 172 8098, 8098 Firmware, 8998 and 169 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.
|
|||||
| CVE-2023-33064 | 1 Qualcomm | 178 Aqt1000, Aqt1000 Firmware, Ar8035 and 175 more | 2025-08-11 | N/A | 5.5 MEDIUM |
|
Transient DOS in Audio when invoking callback function of ASM driver.
|
|||||
| CVE-2024-45558 | 1 Qualcomm | 366 Ar8035, Ar8035 Firmware, Csr8811 and 363 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
|
|||||
| CVE-2023-43528 | 1 Qualcomm | 182 Ar8035, Ar8035 Firmware, C-v2x 9150 and 179 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.
|
|||||
| CVE-2024-33067 | 1 Qualcomm | 154 Ar8035, Ar8035 Firmware, C-v2x 9150 and 151 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
|
|||||
| CVE-2023-28569 | 1 Qualcomm | 416 Aqt1000, Aqt1000 Firmware, Ar9380 and 413 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in WLAN HAL while handling command through WMI interfaces.
|
|||||
| CVE-2023-33065 | 1 Qualcomm | 208 Aqt1000, Aqt1000 Firmware, Ar8035 and 205 more | 2025-08-11 | N/A | 6.1 MEDIUM |
|
Information disclosure in Audio while accessing AVCS services from ADSP payload.
|
|||||
| CVE-2024-33050 | 1 Qualcomm | 514 Ar8035, Ar8035 Firmware, Ar9380 and 511 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
|
|||||
| CVE-2023-43527 | 1 Qualcomm | 108 Fastconnect 6800, Fastconnect 6800 Firmware, Fastconnect 6900 and 105 more | 2025-08-11 | N/A | 6.8 MEDIUM |
|
Information disclosure while parsing dts header atom in Video.
|
|||||
| CVE-2023-24849 | 1 Qualcomm | 476 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9206 Lte Modem and 473 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
|
|||||
| CVE-2023-33062 | 1 Qualcomm | 580 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 577 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS in WLAN Firmware while parsing a BTM request.
|
|||||
| CVE-2024-33051 | 1 Qualcomm | 578 315 5g Iot, 315 5g Iot Firmware, 9206 Lte and 575 more | 2025-08-11 | N/A | 7.5 HIGH |
|
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
|
|||||
| CVE-2023-43555 | 1 Qualcomm | 238 215 Mobile, 215 Mobile Firmware, Aqt1000 and 235 more | 2025-08-11 | N/A | 8.2 HIGH |
|
Information disclosure in Video while parsing mp2 clip with invalid section length.
|
|||||