Buffer Over-read

The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.

CVEs (446)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-44443 1Google 1Android Apr 10, 2025 Jan 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
CVE-2022-42781 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42780 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42779 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42774 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42768 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 4.3 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42762 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42759 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42758 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 3.3 LOW· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-42757 1Google 1Android Apr 23, 2025 Dec 6, 2022 N/A· v4 3.3 LOW· v3 N/A· v2 In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
CVE-2022-39132 1Google 1Android Apr 24, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In camera driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-39130 1Google 1Android Apr 24, 2025 Dec 6, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-38673 1Google 1Android May 15, 2025 Oct 14, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-38671 1Google 1Android Nov 21, 2024 Oct 14, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In camera driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-3178 1Gpac 1Gpac Nov 21, 2024 Sep 12, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Over-read in GitHub repository gpac/gpac prior to 2.1.0-DEV.
CVE-2022-20823 1Cisco 146Nexus 3016 Firmware Nexus 3016q FirmwareNexus 3048 Firmware+143 more Nov 21, 2024 Aug 25, 2022 N/A· v4 8.6 HIGH· v3 N/A· v2 A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due...Show more A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incomplete input validation of specific OSPFv3 packets. An attacker could exploit this vulnerability by sending a malicious OSPFv3 link-state advertisement (LSA) to an affected device. A successful exploit could allow the attacker to cause the OSPFv3 process to crash and restart multiple times, causing the affected device to reload and resulting in a DoS condition. Note: The OSPFv3 feature is disabled by default. To exploit this vulnerability, an attacker must be able to establish a full OSPFv3 neighbor state with an affected device. For more information about exploitation conditions, see the Details section of this advisory.Show less
CVE-2020-35511 2Debian Libpng 2Debian Linux Pngcheck Nov 21, 2024 Aug 23, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.
CVE-2022-2301 1Chafa Project 1Chafa Nov 21, 2024 Jul 4, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Buffer Over-read in GitHub repository hpjansson/chafa prior to 1.10.3.
CVE-2022-32141 1Codesys 2Plcwinnt Runtime Toolkit Nov 21, 2024 Jun 24, 2022 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an internal buffer over-read, resulting in a denial-of-service condi...Show more Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an internal buffer over-read, resulting in a denial-of-service condition. User interaction is not required.Show less
CVE-2022-2175 2Fedoraproject Vim 2Fedora Vim Nov 21, 2024 Jun 23, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Buffer Over-read in GitHub repository vim/vim prior to 8.2.

Previous 1...192021 22 23 Next