Total
13459 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-20882 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 7.0 HIGH |
|
Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2025-20881 | 1 Samsung | 1 Android | 2025-02-12 | N/A | 7.0 HIGH |
|
Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
|
|||||
| CVE-2024-0143 | 2025-02-12 | N/A | 6.8 MEDIUM | ||
|
NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code execution and data tampering.
|
|||||
| CVE-2024-0142 | 2025-02-12 | N/A | 6.8 MEDIUM | ||
|
NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code execution and data tampering.
|
|||||
| CVE-2024-24686 | 1 Libigl | 1 Libigl | 2025-02-11 | N/A | 7.8 HIGH |
|
Multiple stack-based buffer overflow vulnerabilities exist in the readOFF functionality of libigl v2.5.0. A specially crafted .off file can lead to stack-based buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability concerns the parsing of comments within the faces section of an `.off` file processed via the `readOFF` function.
|
|||||
| CVE-2024-24685 | 1 Libigl | 1 Libigl | 2025-02-11 | N/A | 7.8 HIGH |
|
Multiple stack-based buffer overflow vulnerabilities exist in the readOFF functionality of libigl v2.5.0. A specially crafted .off file can lead to stack-based buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability concerns the parsing of comments within the vertex section of an `.off` file processed via the `readOFF` function.
|
|||||
| CVE-2023-6322 | 3 Roku, Throughtek, Wyze | 5 Indoor Camera Se, Indoor Camera Se Firmware, Kalay Platform and 2 more | 2025-02-11 | N/A | 7.2 HIGH |
|
A stack-based buffer overflow vulnerability exists in the message parsing functionality of the Roku Indoor Camera SE version 3.0.2.4679 and Wyze Cam v3 version 4.36.11.5859. A specially crafted message can lead to stack-based buffer overflow. An attacker can make authenticated requests to trigger this vulnerability.
|
|||||
| CVE-2023-26555 | 1 Ntp | 1 Ntp | 2025-02-11 | N/A | 6.4 MEDIUM |
|
praecis_parse in ntpd/refclock_palisade.c in NTP 4.2.8p15 has an out-of-bounds write. Any attack method would be complex, e.g., with a manipulated GPS receiver.
|
|||||
| CVE-2023-22615 | 1 Insyde | 1 Insydeh2o | 2025-02-11 | N/A | 8.4 HIGH |
|
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI subfunction execution may corrupt SMRAM. An attacker can pass an address in the RCX save state register that overlaps SMRAM, thereby coercing an IHISI subfunction handler to overwrite private SMRAM.
|
|||||
| CVE-2024-50664 | 1 Gpac | 1 Gpac | 2025-02-11 | N/A | 7.8 HIGH |
|
gpac 2.4 contains a heap-buffer-overflow at isomedia/sample_descs.c:1799 in gf_isom_new_mpha_description in gpac/MP4Box.
|
|||||
| CVE-2023-27804 | 1 H3c | 1 Magic R100 Firmware | 2025-02-11 | N/A | 4.9 MEDIUM |
|
H3C Magic R100 R100V100R005.bin was discovered to contain a stack overflow via the DelvsList interface at /goform/aspForm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted payload.
|
|||||
| CVE-2023-22614 | 1 Insyde | 1 Insydeh2o | 2025-02-11 | N/A | 8.8 HIGH |
|
An issue was discovered in ChipsetSvcSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. There is insufficient input validation in BIOS Guard updates. An attacker can induce memory corruption in SMM by supplying malformed inputs to the BIOS Guard SMI handler.
|
|||||
| CVE-2023-22613 | 1 Insyde | 1 Insydeh2o | 2025-02-11 | N/A | 8.8 HIGH |
|
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. It is possible to write to an attacker-controlled address. An attacker could invoke an SMI handler with a malformed pointer in RCX that overlaps SMRAM, resulting in SMM memory corruption.
|
|||||
| CVE-2021-46879 | 1 Treasuredata | 1 Fluent Bit | 2025-02-11 | N/A | 7.8 HIGH |
|
An issue was discovered in Treasure Data Fluent Bit 1.7.1, a wrong variable is used to get the msgpack data resulting in a heap overflow in flb_msgpack_gelf_value_ext. An attacker can craft a malicious file and tick the victim to open the file with the software, triggering a heap overflow and execute arbitrary code on the target system.
|
|||||
| CVE-2023-27718 | 1 Dlink | 2 Dir878, Dir878 Firmware | 2025-02-11 | N/A | 9.8 CRITICAL |
|
D-Link DIR878 1.30B08 was discovered to contain a stack overflow in the sub_498308 function. This vulnerability allows attackers to cause a Denial of Service (DoS) or execute arbitrary code via a crafted payload.
|
|||||
| CVE-2025-21161 | 2025-02-11 | N/A | 7.8 HIGH | ||
|
Substance3D - Designer versions 14.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
|
|||||
| CVE-2023-22612 | 1 Insyde | 1 Insydeh2o | 2025-02-11 | N/A | 8.8 HIGH |
|
An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. A malicious host OS can invoke an Insyde SMI handler with malformed arguments, resulting in memory corruption in SMM.
|
|||||
| CVE-2022-42858 | 1 Apple | 1 Macos | 2025-02-11 | N/A | 7.8 HIGH |
|
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.1. An app may be able to execute arbitrary code with kernel privileges
|
|||||
| CVE-2022-46709 | 1 Apple | 1 Iphone Os | 2025-02-11 | N/A | 9.8 CRITICAL |
|
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13, iOS 16. An app may be able to execute arbitrary code with kernel privileges
|
|||||
| CVE-2023-26554 | 1 Ntp | 1 Ntp | 2025-02-11 | N/A | 5.6 MEDIUM |
|
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a '\0' character. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.
|
|||||
| CVE-2023-26553 | 1 Ntp | 1 Ntp | 2025-02-11 | N/A | 5.6 MEDIUM |
|
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when copying the trailing number. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.
|
|||||
| CVE-2023-26552 | 1 Ntp | 1 Ntp | 2025-02-11 | N/A | 5.6 MEDIUM |
|
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write when adding a decimal point. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.
|
|||||
| CVE-2023-26551 | 1 Ntp | 1 Ntp | 2025-02-11 | N/A | 5.6 MEDIUM |
|
mstolfp in libntp/mstolfp.c in NTP 4.2.8p15 has an out-of-bounds write in the cp<cpdec while loop. An adversary may be able to attack a client ntpq process, but cannot attack ntpd.
|
|||||
| CVE-2023-26064 | 1 Lexmark | 217 6500e, B2236, B2338 and 214 more | 2025-02-11 | N/A | 9.8 CRITICAL |
|
Certain Lexmark devices through 2023-02-19 have an Out-of-bounds Write.
|
|||||
| CVE-2024-12695 | 1 Google | 1 Chrome | 2025-02-11 | N/A | 8.8 HIGH |
|
Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
|||||
| CVE-2023-52432 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 5.9 MEDIUM |
|
Improper input validation in IpcTxSndSetLoopbackCtrl in libsec-ril prior to SMR Sep-2023 Release 1 allows local attackers to write out-of-bounds memory.
|
|||||
| CVE-2024-20880 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.4 MEDIUM |
|
Stack-based buffer overflow vulnerability in bootloader prior to SMR Jun-2024 Release 1 allows physical attackers to overwrite memory.
|
|||||
| CVE-2024-20878 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 7.3 HIGH |
|
Heap out-of-bound write vulnerability in parsing grid image in libsavscmn.so prior to SMR June-2024 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2024-49410 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 5.9 MEDIUM |
|
Out-of-bounds write in libswmfextractor.so prior to SMR Dec-2024 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2024-49415 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 8.1 HIGH |
|
Out-of-bound write in libsaped.so prior to SMR Dec-2024 Release 1 allows remote attackers to execute arbitrary code.
|
|||||
| CVE-2024-20832 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.4 MEDIUM |
|
Heap overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code.
|
|||||
| CVE-2024-20831 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.4 MEDIUM |
|
Stack overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code.
|
|||||
| CVE-2024-20877 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 7.3 HIGH |
|
Heap out-of-bound write vulnerability in parsing grid image header in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to execute arbitrary code.
|
|||||
| CVE-2024-20873 | 1 Samsung | 2 Android, Exynos 1280 | 2025-02-10 | N/A | 4.2 MEDIUM |
|
Improper input validation vulnerability in caminfo driver prior to SMR Jun-2024 Release 1 allows local privileged attackers to write out-of-bounds memory.
|
|||||
| CVE-2024-20863 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.7 MEDIUM |
|
Out of bounds write vulnerability in SNAP in HAL prior to SMR May-2024 Release 1 allows local privileged attackers to execute arbitrary code.
|
|||||
| CVE-2024-20862 | 1 Samsung | 1 Android | 2025-02-10 | N/A | 6.0 MEDIUM |
|
Out-of-bounds write in SveService prior to SMR May-2024 Release 1 allows local privileged attackers to execute arbitrary code.
|
|||||
| CVE-2024-9996 | 1 Autodesk | 10 Autocad, Autocad Advance Steel, Autocad Architecture and 7 more | 2025-02-10 | N/A | 7.8 HIGH |
|
A maliciously crafted DWG file, when parsed in acdb25.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
|
|||||
| CVE-2024-7671 | 1 Autodesk | 1 Navisworks | 2025-02-10 | N/A | 7.8 HIGH |
|
A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.
|
|||||
| CVE-2022-47337 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2025-02-10 | N/A | 5.5 MEDIUM |
|
In media service, there is a missing permission check. This could lead to local denial of service in media service.
|
|||||
| CVE-2023-1906 | 2 Fedoraproject, Imagemagick | 3 Extra Packages For Enterprise Linux, Fedora, Imagemagick | 2025-02-10 | N/A | 5.5 MEDIUM |
|
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a denial of service.
|
|||||