Vulnerabilities (CVE)

Filtered by CWE-119
Total 11612 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-25527 1 Nvidia 2 Dgx H100, Dgx H100 Firmware 2024-11-21 N/A 7.8 HIGH
NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. A successful exploit of this vulnerability may lead to arbitrary kernel code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
CVE-2023-25509 1 Nvidia 2 Dgx-1, Sbios 2024-11-21 N/A 6.0 MEDIUM
NVIDIA DGX-1 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, and escalation of privileges.
CVE-2023-24564 1 Siemens 1 Solid Edge Se2023 2024-11-21 N/A 7.8 HIGH
A vulnerability has been identified in Solid Edge SE2022 (All versions < V222.0MP12), Solid Edge SE2022 (All versions), Solid Edge SE2023 (All versions < V223.0Update2). The affected application contains a memory corruption vulnerability while parsing specially crafted DWG files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19069)
CVE-2023-23457 2 Fedoraproject, Upx Project 2 Fedora, Upx 2024-11-21 N/A 5.3 MEDIUM
A Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dynamic() in p_lx_elf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of service.
CVE-2023-22313 1 Intel 5 Qat Driver, Qat Driver Firmware, Quickassist Technology Driver and 2 more 2024-11-21 N/A 2.3 LOW
Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may allow a privileged user to potentially enable information disclosure via local access.
CVE-2023-22297 1 Intel 20 Server System D50tnp1mhcpac, Server System D50tnp1mhcpac Firmware, Server System D50tnp1mhcrac and 17 more 2024-11-21 N/A 8.2 HIGH
Access of memory location after end of buffer in some Intel(R) Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access.
CVE-2023-21663 1 Qualcomm 76 Aqt1000, Aqt1000 Firmware, Qca6420 and 73 more 2024-11-21 N/A 6.7 MEDIUM
Memory Corruption while accessing metadata in Display.
CVE-2023-21654 1 Qualcomm 112 Apq8096au, Apq8096au Firmware, Aqt1000 and 109 more 2024-11-21 N/A 6.7 MEDIUM
Memory corruption in Audio during playback session with audio effects enabled.
CVE-2023-21637 1 Qualcomm 110 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 107 more 2024-11-21 N/A 6.7 MEDIUM
Memory corruption in Linux while calling system configuration APIs.
CVE-2023-21634 1 Qualcomm 102 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 99 more 2024-11-21 N/A 6.7 MEDIUM
Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.
CVE-2023-21633 1 Qualcomm 194 Apq8064au, Apq8064au Firmware, Aqt1000 and 191 more 2024-11-21 N/A 6.7 MEDIUM
Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request.
CVE-2023-21628 1 Qualcomm 566 Apq8017, Apq8017 Firmware, Apq8064au and 563 more 2024-11-21 N/A 8.4 HIGH
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
CVE-2023-21264 1 Google 1 Android 2024-11-21 N/A 6.7 MEDIUM
In multiple functions of mem_protect.c, there is a possible way to access hypervisor memory due to a memory access check in the wrong place. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
CVE-2023-21167 1 Google 1 Android 2024-11-21 N/A 5.5 MEDIUM
In setProfileName of DevicePolicyManagerService.java, there is a possible way to crash the SystemUI menu due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-259942964
CVE-2023-21047 1 Google 1 Android 2024-11-21 N/A 4.4 MEDIUM
In ConvertToHalMetadata of aidl_utils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-256166866References: N/A
CVE-2023-21044 1 Google 1 Android 2024-11-21 N/A 4.4 MEDIUM
In init of VendorGraphicBufferMeta, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-253425086References: N/A
CVE-2023-20972 1 Google 1 Android 2024-11-21 N/A 5.5 MEDIUM
In btm_vendor_specific_evt of btm_devctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-255304665
CVE-2023-20605 2 Google, Mediatek 51 Android, Mt6580, Mt6731 and 48 more 2024-11-21 N/A 4.4 MEDIUM
In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07550104; Issue ID: ALPS07550104.
CVE-2023-20531 1 Amd 100 Epyc 7002, Epyc 7002 Firmware, Epyc 7003 and 97 more 2024-11-21 N/A 7.5 HIGH
Insufficient bound checks in the SMU may allow an attacker to update the SRAM from/to address space to an invalid value potentially resulting in a denial of service.
CVE-2023-20529 1 Amd 100 Epyc 7002, Epyc 7002 Firmware, Epyc 7003 and 97 more 2024-11-21 N/A 7.5 HIGH
Insufficient bound checks in the SMU may allow an attacker to update the from/to address space to an invalid value potentially resulting in a denial of service.