Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,094)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-20900 1Samsung 1Blockchain Keystore Jul 17, 2025 Feb 4, 2025 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Out-of-bounds write in Blockchain Keystore prior to version 1.3.16.5 allows local privileged attackers to write out-of-bounds memory.
CVE-2025-20890 1Samsung 1Android Feb 12, 2025 Feb 4, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability...Show more Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.Show less
CVE-2025-20889 1Samsung 1Android Feb 12, 2025 Feb 4, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerabili...Show more Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.Show less
CVE-2025-20888 1Samsung 1Android Feb 12, 2025 Feb 4, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this...Show more Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.Show less
CVE-2025-20885 1Samsung 1Android Mar 25, 2025 Feb 4, 2025 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption.
CVE-2025-20882 1Samsung 1Android Feb 12, 2025 Feb 4, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggerin...Show more Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.Show less
CVE-2025-20881 1Samsung 1Android Feb 12, 2025 Feb 4, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for t...Show more Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.Show less
CVE-2024-38420 1Qualcomm 157Aqt1000 Firmware Ar8035 FirmwareFastconnect 6200 Firmware+154 more Feb 5, 2025 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while configuring a Hypervisor based input virtual device.
CVE-2024-38413 1Qualcomm 7Fastconnect 7800 Firmware Snapdragon 8 Gen 3 Mobile FirmwareWcd9390 Firmware+4 more Feb 5, 2025 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing frame packets.
CVE-2025-20642 1Google 1Android Feb 4, 2025 Feb 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges ne...Show more In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issue ID: MSV-2057.Show less
CVE-2025-20641 1Google 1Android Feb 4, 2025 Feb 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges ne...Show more In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issue ID: MSV-2058.Show less
CVE-2025-20639 1Google 1Android Feb 4, 2025 Feb 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges ne...Show more In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issue ID: MSV-2060.Show less
CVE-2025-20636 1Google 1Android Mar 19, 2025 Feb 3, 2025 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not n...Show more In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09403554; Issue ID: MSV-2431.Show less
CVE-2025-20635 4Google LinuxfoundationOpenwrt+1 more 4Android OpenwrtRdk B+1 more Mar 13, 2025 Feb 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges...Show more In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09403752; Issue ID: MSV-2434.Show less
CVE-2025-20634 1Mediatek 3Nr16 Nr17Nr17r Feb 17, 2026 Feb 3, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional exec...Show more In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01289384; Issue ID: MSV-2436.Show less
CVE-2025-20633 1Mediatek 1Software Development Kit Mar 18, 2025 Feb 3, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction i...Show more In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00400889; Issue ID: MSV-2491.Show less
CVE-2025-20632 1Mediatek 1Software Development Kit Apr 22, 2025 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...Show more In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00397139; Issue ID: MSV-2188.Show less
CVE-2025-20631 1Mediatek 1Software Development Kit Apr 22, 2025 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...Show more In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00397141; Issue ID: MSV-2187.Show less
CVE-2024-20142 1Google 1Android Feb 3, 2025 Feb 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges...Show more In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291406; Issue ID: MSV-2070.Show less
CVE-2024-20141 1Google 1Android Feb 3, 2025 Feb 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges...Show more In V5 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291402; Issue ID: MSV-2073.Show less

Previous 1...979899...705 Next