Total
2430 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-43524 | 2024-05-06 | N/A | 6.7 MEDIUM | ||
Memory corruption when the bandpass filter order received from AHAL is not within the expected range. | |||||
CVE-2023-43525 | 2024-05-06 | N/A | 6.7 MEDIUM | ||
Memory corruption while copying the sound model data from user to kernel buffer during sound model register. | |||||
CVE-2024-21480 | 2024-05-06 | N/A | 7.3 HIGH | ||
Memory corruption while playing audio file having large-sized input buffer. | |||||
CVE-2023-43526 | 2024-05-06 | N/A | 6.7 MEDIUM | ||
Memory corruption while querying module parameters from Listen Sound model client in kernel from user space. | |||||
CVE-2023-32763 | 1 Qt | 1 Qt | 2024-05-01 | N/A | 7.5 HIGH |
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1. When a SVG file with an image inside it is rendered, a QTextLayout buffer overflow can be triggered. | |||||
CVE-2024-20313 | 1 Cisco | 1 Ios Xe | 2024-04-30 | N/A | 7.4 HIGH |
A vulnerability in the OSPF version 2 (OSPFv2) feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of OSPF updates that are processed by a device. An attacker could exploit this vulnerability by sending a malformed OSPF update to the device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. | |||||
CVE-2024-1969 | 2024-04-30 | N/A | 8.2 HIGH | ||
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Secomea GateManager (webserver modules) allows crash of GateManager.This issue affects GateManager: from 9.7 before 11.2.624095033. | |||||
CVE-2024-26134 | 2024-04-19 | N/A | 7.5 HIGH | ||
cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) (RFC 8949) serialization format. Starting in version 5.5.1 and prior to version 5.6.2, an attacker can crash a service using cbor2 to parse a CBOR binary by sending a long enough object. Version 5.6.2 contains a patch for this issue. | |||||
CVE-2022-24807 | 2024-04-17 | N/A | 6.5 MEDIUM | ||
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a SET request to `SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable` can cause an out-of-bounds memory access. A user with read-write credentials can exploit the issue. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range. | |||||
CVE-2022-24805 | 2024-04-17 | N/A | 6.5 MEDIUM | ||
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in the handling of the `INDEX` of `NET-SNMP-VACM-MIB` can cause an out-of-bounds memory access. A user with read-only credentials can exploit the issue. Version 5.9.2 contains a patch. Users should use strong SNMPv3 credentials and avoid sharing the credentials. Those who must use SNMPv1 or SNMPv2c should use a complex community string and enhance the protection by restricting access to a given IP address range. | |||||
CVE-2024-3871 | 2024-04-17 | N/A | 9.8 CRITICAL | ||
The Delta Electronics DVW-W02W2-E2 devices expose a web administration interface to users. This interface implements multiple features that are affected by command injections and stack overflows vulnerabilities. Successful exploitation of these flaws would allow remote unauthenticated attackers to gain remote code execution with elevated privileges on the affected devices. This issue affects DVW-W02W2-E2 through version 2.5.2. | |||||
CVE-2023-33055 | 1 Qualcomm | 304 Apq5053-aa, Apq5053-aa Firmware, Aqt1000 and 301 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory Corruption in Audio while invoking callback function in driver from ADSP. | |||||
CVE-2023-33045 | 1 Qualcomm | 258 Ar8035, Ar8035 Firmware, Csr8811 and 255 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. | |||||
CVE-2023-33035 | 1 Qualcomm | 288 Apq5053-aa, Apq5053-aa Firmware, Ar8035 and 285 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption while invoking callback function of AFE from ADSP. | |||||
CVE-2023-33031 | 1 Qualcomm | 330 Apq5053-aa, Apq5053-aa Firmware, Apq8009 and 327 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer. | |||||
CVE-2023-28570 | 1 Qualcomm | 168 Aqt1000, Aqt1000 Firmware, Ar8035 and 165 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption while processing audio effects. | |||||
CVE-2023-28562 | 1 Qualcomm | 136 Aqt1000, Aqt1000 Firmware, Fastconnect 6200 and 133 more | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption while handling payloads from remote ESL. | |||||
CVE-2023-28561 | 1 Qualcomm | 2 Qcn7606, Qcn7606 Firmware | 2024-04-12 | N/A | 9.8 CRITICAL |
Memory corruption in QESL while processing payload from external ESL device to firmware. | |||||
CVE-2023-28560 | 1 Qualcomm | 534 8098, 8098 Firmware, 8998 and 531 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | |||||
CVE-2023-28559 | 1 Qualcomm | 426 Aqt1000, Aqt1000 Firmware, Ar8031 and 423 more | 2024-04-12 | N/A | 7.8 HIGH |
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload. |