Vulnerabilities (CVE)

Filtered by CWE-787
Total 10943 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-47364 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-03-26 N/A 5.5 MEDIUM
In wlan driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-44448 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-03-26 N/A 5.5 MEDIUM
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
CVE-2022-42783 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-03-26 N/A 5.5 MEDIUM
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services.
CVE-2023-20614 2 Google, Mediatek 38 Android, Mt6739, Mt6761 and 35 more 2025-03-26 N/A 6.7 MEDIUM
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628615; Issue ID: ALPS07628615.
CVE-2022-47452 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-03-26 N/A 5.5 MEDIUM
In gnss driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-38675 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-03-26 N/A 5.5 MEDIUM
In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2023-52369 1 Huawei 2 Emui, Harmonyos 2025-03-25 N/A 9.1 CRITICAL
Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity.
CVE-2024-52531 2025-03-25 N/A 6.5 MEDIUM
GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. There is a plausible way to reach this remotely via soup_message_headers_get_content_type (e.g., an application may want to retrieve the content type of a request or response).
CVE-2024-27373 1 Samsung 10 Exynos 1280, Exynos 1280 Firmware, Exynos 1330 and 7 more 2025-03-25 N/A 6.7 MEDIUM
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_config_get_nl_params(), there is no input validation check on disc_attr->mesh_id_len coming from userspace, which can lead to a heap overwrite.
CVE-2022-25480 1 Realtek 2 Rtsper, Rtsuer 2025-03-25 N/A 7.8 HIGH
Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows writing to kernel memory beyond the SystemBuffer of the IRP.
CVE-2024-41445 1 Ihedvall 1 Mdf Library 2025-03-25 N/A 6.5 MEDIUM
Library MDF (mdflib) v2.1 is vulnerable to a heap-based buffer overread via a crafted mdf4 file is parsed using the ReadData function
CVE-2024-32608 1 Hdfgroup 1 Hdf5 2025-03-25 N/A 9.8 CRITICAL
HDF5 library through 1.14.3 has memory corruption in H5A__close resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2024-29013 1 Sonicwall 22 Nsa 2700, Nsa 3700, Nsa 4700 and 19 more 2025-03-25 N/A 6.5 MEDIUM
Heap-based buffer overflow vulnerability in the SonicOS SSL-VPN allows an authenticated remote attacker to cause Denial of Service (DoS) via memcpy function.
CVE-2024-29012 1 Sonicwall 22 Nsa 2700, Nsa 3700, Nsa 4700 and 19 more 2025-03-25 N/A 7.5 HIGH
Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function.
CVE-2024-29753 2025-03-25 N/A 7.7 HIGH
In tmu_set_control_temp_step of tmu.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2024-27227 1 Google 1 Android 2025-03-25 N/A 9.8 CRITICAL
A malicious DNS response can trigger a number of OOB reads, writes, and other memory issues
CVE-2024-30620 1 Tenda 2 Ax1803, Ax1803 Firmware 2025-03-25 N/A 9.8 CRITICAL
Tenda AX1803 v1.0.0.1 contains a stack overflow via the serviceName parameter in the function fromAdvSetMacMtuWan.
CVE-2024-58069 1 Linux 1 Linux Kernel 2025-03-25 N/A 7.8 HIGH
In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read The nvmem interface supports variable buffer sizes, while the regmap interface operates with fixed-size storage. If an nvmem client uses a buffer size less than 4 bytes, regmap_read will write out of bounds as it expects the buffer to point at an unsigned int. Fix this by using an intermediary unsigned int to hold the value.
CVE-2025-20632 2025-03-25 N/A 7.8 HIGH
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00397139; Issue ID: MSV-2188.
CVE-2024-40724 1 Assimp 1 Assimp 2025-03-25 N/A 7.8 HIGH
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.2 allows a local attacker to execute arbitrary code by inputting a specially crafted file into the product.