Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,093)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-32397 1Rt Labs 1P Net May 13, 2025 May 7, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to induce a crash in IO devices that use the library by sending a malicious RPC packet.
CVE-2025-32396 1Rt Labs 1P Net May 13, 2025 May 7, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An Heap-based Buffer Overflow in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to induce a crash in IO devices that use the library by sending a malicious RPC packet.
CVE-2025-0649 1Google 1Tensorflow Serving Jul 31, 2025 May 6, 2025 8.9 HIGH· v4 7.5 HIGH· v3 N/A· v2 Incorrect JSON input stringification in Google's Tensorflow serving versions up to 2.18.0 allows for potentially unbounded recursion leading to server crash.
CVE-2025-32022 - - May 7, 2025 May 6, 2025 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Finit provides fast init for Linux systems. Finit's urandom plugin has a heap buffer overwrite vulnerability at boot which leads to it overwriting other parts of the heap, possibly causing random instabilities and undefi...Show more Finit provides fast init for Linux systems. Finit's urandom plugin has a heap buffer overwrite vulnerability at boot which leads to it overwriting other parts of the heap, possibly causing random instabilities and undefined behavior. The urandom plugin is enabled by default, so this bug affects everyone using Finit 4.2 or later that do not explicitly disable the plugin at build time. This bug is fixed in Finit 4.12. Those who cannot upgrade or backport the fix to urandom.c are strongly recommended to disable the plugin in the call to the `configure` script.Show less
CVE-2025-4356 1Dlink 1Dap 1520 Firmware May 13, 2025 May 6, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been declared as critical. This vulnerability affects the function mod_graph_auth_uri_handler of the file /storage of the component Authentication Handle...Show more A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been declared as critical. This vulnerability affects the function mod_graph_auth_uri_handler of the file /storage of the component Authentication Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-4355 1Dlink 1Dap 1520 Firmware May 13, 2025 May 6, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been classified as critical. This affects the function set_ws_action of the file /dws/api/. The manipulation leads to heap-based buffer overflow. It is p...Show more A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been classified as critical. This affects the function set_ws_action of the file /dws/api/. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-4354 1Dlink 1Dap 1520 Firmware May 13, 2025 May 6, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02 and classified as critical. Affected by this issue is the function check_dws_cookie of the file /storage. The manipulation leads to stack-based buffer overflow....Show more A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02 and classified as critical. Affected by this issue is the function check_dws_cookie of the file /storage. The manipulation leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-27132 1Openatom 1Openharmony May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v5.0.3 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios.
CVE-2025-21470 1Qualcomm 33Aqt1000 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+30 more Aug 11, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter.
CVE-2025-21469 1Qualcomm 20Fastconnect 6700 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+17 more Aug 11, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call.
CVE-2025-21468 1Qualcomm 146Ar8035 Firmware Csra6620 FirmwareCsra6640 Firmware+143 more Aug 11, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.
CVE-2025-21467 1Qualcomm 103215 Mobile Firmware Csra6620 FirmwareCsra6640 Firmware+100 more Aug 11, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while reading the FW response from the shared queue.
CVE-2025-21462 1Qualcomm 13Fastconnect 6900 Firmware Fastconnect 7800 FirmwareSa4150p Firmware+10 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing an IOCTL request, when buffer significantly exceeds the command argument limit.
CVE-2025-21460 1Qualcomm 36Qam8255p Firmware Qam8295p FirmwareQam8620p Firmware+33 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously.
CVE-2024-49845 1Qualcomm 144Ar8035 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+141 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption during the FRS UDS generation process.
CVE-2024-49844 1Qualcomm 179Ar8035 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+176 more Aug 11, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while triggering commands in the PlayReady Trusted application.
CVE-2024-49835 1Qualcomm 207Aqt1000 Firmware Ar8035 FirmwareCsra6620 Firmware+204 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while reading secure file.
CVE-2024-45581 1Qualcomm 30Mdm9628 Firmware Qam8295p FirmwareQca6564a Firmware+27 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while sound model registration for voice activation with audio kernel driver.
CVE-2024-45579 1Qualcomm 10Fastconnect 6900 Firmware Fastconnect 7800 FirmwareSdm429w Firmware+7 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check.
CVE-2024-45577 1Qualcomm 10Fastconnect 6900 Firmware Fastconnect 7800 FirmwareSdm429w Firmware+7 more May 9, 2025 May 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information.

Previous 1...818283...705 Next