Total
284 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-8796 | 2 Debian, Rdesktop | 2 Debian Linux, Rdesktop | 2024-09-16 | N/A |
| rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_bitmap_updates() that results in a Denial of Service (segfault). | ||||
| CVE-2022-32141 | 1 Codesys | 2 Plcwinnt, Runtime Toolkit | 2024-09-16 | 6.5 Medium |
| Multiple CODESYS Products are prone to a buffer over read. A low privileged remote attacker may craft a request with an invalid offset, which can cause an internal buffer over-read, resulting in a denial-of-service condition. User interaction is not required. | ||||
| CVE-2023-36801 | 1 Microsoft | 8 Windows Server 2008, Windows Server 2008 R2, Windows Server 2008 Sp2 and 5 more | 2024-09-11 | 5.3 Medium |
| DHCP Server Service Information Disclosure Vulnerability | ||||
| CVE-2024-6874 | 1 Haxx | 1 Libcurl | 2024-09-10 | 4.3 Medium |
| libcurl's URL API function [curl_url_get()](https://curl.se/libcurl/c/curl_url_get.html) offers punycode conversions, to and from IDN. Asking to convert a name that is exactly 256 bytes, libcurl ends up reading outside of a stack based buffer when built to use the *macidn* IDN backend. The conversion function then fills up the provided buffer exactly - but does not null terminate the string. This flaw can lead to stack contents accidently getting returned as part of the converted string. | ||||
| CVE-2023-6992 | 1 Cloudflare | 1 Zlib | 2024-09-06 | 4 Medium |
| Cloudflare version of zlib library was found to be vulnerable to memory corruption issues affecting the deflation algorithm implementation (deflate.c). The issues resulted from improper input validation and heap-based buffer overflow. A local attacker could exploit the problem during compression using a crafted malicious file potentially leading to denial of service of the software. Patches: The issue has been patched in commit 8352d10 https://github.com/cloudflare/zlib/commit/8352d108c05db1bdc5ac3bdf834dad641694c13c . The upstream repository is not affected. | ||||
| CVE-2024-33047 | 1 Qualcomm | 50 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 47 more | 2024-09-05 | 8.4 High |
| Memory corruption when the captureRead QDCM command is invoked from user-space. | ||||
| CVE-2023-28553 | 1 Qualcomm | 288 Ar8035, Ar8035 Firmware, Ar9380 and 285 more | 2024-09-04 | 6.1 Medium |
| Information Disclosure in WLAN Host when processing WMI event command. | ||||
| CVE-2024-33048 | 1 Qualcomm | 394 Ar8035, Ar8035 Firmware, Csr8811 and 391 more | 2024-09-04 | 7.5 High |
| Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. | ||||
| CVE-2024-33051 | 1 Qualcomm | 637 315 5g Iot, 315 5g Iot Firmware, 315 5g Iot Modem Firmware and 634 more | 2024-09-04 | 7.5 High |
| Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | ||||
| CVE-2024-33050 | 1 Qualcomm | 541 Ar8035, Ar8035 Firmware, Ar9380 and 538 more | 2024-09-04 | 7.5 High |
| Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | ||||
| CVE-2024-33057 | 1 Qualcomm | 356 Ar8035, Ar8035 Firmware, Csr8811 and 353 more | 2024-09-04 | 7.5 High |
| Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location. | ||||
| CVE-2023-43568 | 1 Lenovo | 222 Ideacentre 3-07ada05, Ideacentre 3-07ada05 Firmware, Ideacentre 3-07imb05 and 219 more | 2024-09-03 | 4.4 Medium |
| A buffer over-read was reported in the LemSecureBootForceKey module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information. | ||||
| CVE-2023-43572 | 1 Lenovo | 222 Ideacentre 3-07ada05, Ideacentre 3-07ada05 Firmware, Ideacentre 3-07imb05 and 219 more | 2024-09-03 | 4.4 Medium |
| A buffer over-read was reported in the BiosExtensionLoader module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information. | ||||
| CVE-2023-43574 | 1 Lenovo | 222 Ideacentre 3-07ada05, Ideacentre 3-07ada05 Firmware, Ideacentre 3-07imb05 and 219 more | 2024-09-03 | 4.4 Medium |
| A buffer over-read was reported in the LEMALLDriversConnectedEventHook module in some Lenovo Desktop products that may allow a local attacker with elevated privileges to disclose sensitive information. | ||||
| CVE-2024-23358 | 1 Qualcomm | 52 Apq8017 Firmware, Apq8037 Firmware, Ar8035 Firmware and 49 more | 2024-09-03 | 7.5 High |
| Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem. | ||||
| CVE-2024-23359 | 1 Qualcomm | 136 315 5g Iot Modem Firmware, 9205 Lte Modem Firmware, 9206 Lte Modem Firmware and 133 more | 2024-09-03 | 8.2 High |
| Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network. | ||||
| CVE-2024-33043 | 2024-09-03 | 5.5 Medium | ||
| Transient DOS while handling PS event when Program Service name length offset value is set to 255. | ||||
| CVE-2024-23364 | 1 Qualcomm | 166 Ar8035 Firmware, Fastconnect 6200 Firmware, Fastconnect 6700 Firmware and 163 more | 2024-09-03 | 7.5 High |
| Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA). | ||||
| CVE-2024-4853 | 2024-08-29 | 3.6 Low | ||
| Memory handling issue in editcap could cause denial of service via crafted capture file | ||||
| CVE-2023-33115 | 2024-08-23 | 7.8 High | ||
| Memory corruption while processing buffer initialization, when trusted report for certain report types are generated. | ||||