Total
13459 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-25004 | 1 9bis | 1 Kitty | 2025-05-15 | N/A | 7.8 HIGH |
|
KiTTY versions 0.76.1.13 and before is vulnerable to a stack-based buffer overflow via the username, occurs due to insufficient bounds checking and input sanitization (at line 2600). This allows an attacker to overwrite adjacent memory, which leads to arbitrary code execution.
|
|||||
| CVE-2024-24543 | 1 Tenda | 2 Ac9, Ac9 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Buffer Overflow vulnerability in the function setSchedWifi in Tenda AC9 v.3.0, firmware version v.15.03.06.42_multi allows a remote attacker to cause a denial of service or run arbitrary code via crafted overflow data.
|
|||||
| CVE-2024-23978 | 1 Kddi | 2 Home Spot Cube 2, Home Spot Cube 2 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Heap-based buffer overflow vulnerability exists in HOME SPOT CUBE2 V102 and earlier. By processing invalid values, arbitrary code may be executed. Note that the affected products are no longer supported.
|
|||||
| CVE-2024-22852 | 1 Dlink | 2 Go-rt-ac750, Go-rt-ac750 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
D-Link Go-RT-AC750 GORTAC750_A1_FW_v101b03 contains a stack-based buffer overflow via the function genacgi_main. This vulnerability allows attackers to enable telnet service via a specially crafted payload.
|
|||||
| CVE-2024-20813 | 1 Samsung | 1 Android | 2025-05-15 | N/A | 8.4 HIGH |
|
Out-of-bounds Write in padmd_vld_qtbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2024-20812 | 1 Samsung | 1 Android | 2025-05-15 | N/A | 8.4 HIGH |
|
Out-of-bounds Write in padmd_vld_htbl of libpadm.so prior to SMR Feb-2024 Release 1 allows local attacker to execute arbitrary code.
|
|||||
| CVE-2024-20007 | 2 Google, Mediatek | 34 Android, Mt6580, Mt6739 and 31 more | 2025-05-15 | N/A | 7.5 HIGH |
|
In mp3 decoder, there is a possible out of bounds write due to a race condition. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08441369; Issue ID: ALPS08441369.
|
|||||
| CVE-2024-20001 | 2 Google, Mediatek | 59 Android, Mt5583, Mt5586 and 56 more | 2025-05-15 | N/A | 6.7 MEDIUM |
|
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: DTV03961601; Issue ID: DTV03961601.
|
|||||
| CVE-2023-5643 | 1 Arm | 3 5th Gen Gpu Architecture Kernel Driver, Bifrost Gpu Kernel Driver, Valhall Gpu Kernel Driver | 2025-05-15 | N/A | 7.8 HIGH |
|
Out-of-bounds Write vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. Depending on the configuration of the Mali GPU Kernel Driver, and if the system’s memory is carefully prepared by the user, then this in turn could write to memory outside of buffer bounds.This issue affects Bifrost GPU Kernel Driver: from r41p0 through r4 ...
Show More |
|||||
| CVE-2022-35040 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b5567.
|
|||||
| CVE-2022-42080 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2025-05-15 | N/A | 7.5 HIGH |
|
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a heap overflow via sched_start_time parameter.
|
|||||
| CVE-2022-42079 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2025-05-15 | N/A | 7.5 HIGH |
|
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via the function formWifiBasicSet.
|
|||||
| CVE-2025-30328 | 3 Adobe, Apple, Microsoft | 3 Animate, Macos, Windows | 2025-05-15 | N/A | 7.8 HIGH |
|
Animate versions 24.0.8, 23.0.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
|
|||||
| CVE-2025-30330 | 3 Adobe, Apple, Microsoft | 3 Illustrator, Macos, Windows | 2025-05-15 | N/A | 7.8 HIGH |
|
Illustrator versions 29.3, 28.7.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
|
|||||
| CVE-2022-42901 | 1 Bentley | 2 Microstation, View | 2025-05-15 | N/A | 7.8 HIGH |
|
Bentley MicroStation and MicroStation-based applications may be affected by out-of-bounds and stack overflow issues when opening crafted XMT files. Exploiting these issues could lead to information disclosure and code execution. The fixed versions are 10.17.01.58* for MicroStation and 10.17.01.19* for Bentley View.
|
|||||
| CVE-2022-42163 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/fromNatStaticSetting.
|
|||||
| CVE-2022-42171 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/saveParentControlInfo.
|
|||||
| CVE-2022-42170 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formWifiWpsStart.
|
|||||
| CVE-2022-42169 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/addWifiMacFilter.
|
|||||
| CVE-2022-42168 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/fromSetIpMacBind.
|
|||||
| CVE-2022-42167 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetFirewallCfg.
|
|||||
| CVE-2022-42164 | 1 Tenda | 2 Ac10, Ac10 Firmware | 2025-05-15 | N/A | 9.8 CRITICAL |
|
Tenda AC10 V15.03.06.23 contains a Stack overflow vulnerability via /goform/formSetClientState.
|
|||||
| CVE-2022-42081 | 1 Tenda | 2 Ac1206, Ac1206 Firmware | 2025-05-15 | N/A | 7.5 HIGH |
|
Tenda AC1206 US_AC1206V1.0RTL_V15.03.06.23_multi_TD01 was discovered to contain a stack overflow via sched_end_time parameter.
|
|||||
| CVE-2022-35081 | 1 Swftools | 1 Swftools | 2025-05-15 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_read_header at /src/png2swf.c.
|
|||||
| CVE-2022-35080 | 1 Swftools | 1 Swftools | 2025-05-15 | N/A | 5.5 MEDIUM |
|
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via png_load at /lib/png.c.
|
|||||
| CVE-2022-35050 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b04de.
|
|||||
| CVE-2022-35049 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b03b5.
|
|||||
| CVE-2022-35048 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0b2c.
|
|||||
| CVE-2022-35047 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b05aa.
|
|||||
| CVE-2022-35046 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0466.
|
|||||
| CVE-2022-35045 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0d63.
|
|||||
| CVE-2022-35044 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x617087.
|
|||||
| CVE-2022-35043 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c08a6.
|
|||||
| CVE-2022-35042 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x4adb11.
|
|||||
| CVE-2022-35041 | 1 Otfcc Project | 1 Otfcc | 2025-05-15 | N/A | 6.5 MEDIUM |
|
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b558f.
|
|||||
| CVE-2022-20397 | 1 Google | 1 Android | 2025-05-15 | N/A | 7.8 HIGH |
|
In SitRilClient_OnResponse of SitRilSe.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-223086933References: N/A
|
|||||
| CVE-2021-0699 | 1 Google | 1 Android | 2025-05-15 | N/A | 7.8 HIGH |
|
In HTBLogKM of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-242345178
|
|||||
| CVE-2022-41674 | 3 Debian, Fedoraproject, Linux | 3 Debian Linux, Fedora, Linux Kernel | 2025-05-15 | N/A | 8.1 HIGH |
|
An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.
|
|||||
| CVE-2022-39120 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2025-05-15 | N/A | 5.5 MEDIUM |
|
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
|
|||||
| CVE-2022-39105 | 2 Google, Unisoc | 14 Android, S8000, Sc7731e and 11 more | 2025-05-15 | N/A | 5.5 MEDIUM |
|
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
|
|||||