Search Results (46531 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-32630 2 Google, Mediatek 6 Android, Mt6789, Mt6855 and 3 more 2025-04-24 6.7 Medium
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07405966; Issue ID: ALPS07405966.
CVE-2022-32624 2 Google, Mediatek 8 Android, Mt6789, Mt6855 and 5 more 2025-04-24 6.7 Medium
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07405923; Issue ID: ALPS07405923.
CVE-2023-50927 1 Contiki-ng 1 Contiki-ng 2025-04-24 8.6 High
Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. An attacker can trigger out-of-bounds reads in the RPL-Lite implementation of the RPL protocol in the Contiki-NG operating system. This vulnerability is caused by insufficient control of the lengths for DIO and DAO messages, in particular when they contain RPL sub-option headers. The problem has been patched in Contiki-NG 4.9. Users are advised to upgrade. Users unable to upgrade should manually apply the code changes in PR #2484.
CVE-2023-52370 1 Huawei 2 Emui, Harmonyos 2025-04-24 9.8 Critical
Stack overflow vulnerability in the network acceleration module.Successful exploitation of this vulnerability may cause unauthorized file access.
CVE-2024-20107 5 Google, Linuxfoundation, Mediatek and 2 more 24 Android, Yocto, Mt6781 and 21 more 2025-04-24 6.2 Medium
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09124360; Issue ID: MSV-1823.
CVE-2024-49995 1 Redhat 1 Enterprise Linux 2025-04-24 7.1 High
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2022-45656 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function.
CVE-2022-45655 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the timeZone parameter in the form_fast_setting_wifi_set function.
CVE-2022-45654 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the ssid parameter in the form_fast_setting_wifi_set function.
CVE-2022-45653 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the page parameter in the fromNatStaticSetting function.
CVE-2022-45652 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 9.1 Critical
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the startIp parameter in the formSetPPTPServer function.
CVE-2022-45651 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 9.1 Critical
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the list parameter in the formSetVirtualSer function.
CVE-2022-45647 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeed parameter in the formSetClientState function.
CVE-2022-45646 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the limitSpeedUp parameter in the formSetClientState function.
CVE-2022-45644 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the formSetClientState function.
CVE-2022-45643 1 Tendacn 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 was discovered to contain a buffer overflow via the deviceId parameter in the addWifiMacFilter function.
CVE-2022-45641 1 Tenda 2 Ac6, Ac6 Firmware 2025-04-24 7.5 High
Tenda AC6V1.0 V15.03.05.19 is vulnerable to Buffer Overflow via formSetMacFilterCfg.
CVE-2022-45313 1 Mikrotik 1 Routeros 2025-04-24 8.8 High
Mikrotik RouterOs before stable v7.5 was discovered to contain an out-of-bounds read in the hotspot process. This vulnerability allows attackers to execute arbitrary code via a crafted nova message.
CVE-2022-39132 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-04-24 5.5 Medium
In camera driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-39131 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2025-04-24 5.5 Medium
In camera driver, there is a possible memory corruption due to improper locking. This could lead to local denial of service in kernel.