Vulnerabilities > Improper Restriction of Operations within the Bounds of a Memory Buffer
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-18 | CVE-2018-11832 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of input size validation before copying to buffer in PMIC function can lead to heap overflow. | 7.8 |
| 2018-09-18 | CVE-2018-11298 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing SET_PASSPOINT_LIST vendor command HDD does not make sure that the realm string that gets passed by upper-layer is NULL terminated. | 7.8 |
| 2018-09-18 | CVE-2018-11274 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, buffer overflow may occur when payload size is extremely large. | 7.8 |
| 2018-09-18 | CVE-2018-11265 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, possible buffer overflow while incrementing the log_buf of type uint64_t in memcpy function, since the log_buf pointer can access the memory beyond the size to store the data after pointer increment. | 7.8 |
| 2018-09-17 | CVE-2018-14320 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Podofo Project Podofo This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. | 6.5 |
| 2018-09-17 | CVE-2018-17143 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The html package (aka x/net/html) through 2018-09-17 in Go mishandles <template><tBody><isindex/action=0>, leading to a "panic: runtime error" in inBodyIM in parse.go during an html.Parse call. | 7.5 |
| 2018-09-16 | CVE-2018-17106 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Tinyftp Project Tinyftp 1.1 In Tinyftp Tinyftpd 1.1, a buffer overflow exists in the text variable of the do_mkd function in the ftpproto.c file. | 7.5 |
| 2018-09-16 | CVE-2018-17076 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Logological General-Purpose Preprocessor GPP through 2.25 will try to use more memory space than is available on the stack, leading to a segmentation fault or possibly unspecified other impact via a crafted file. | 8.8 |
| 2018-09-13 | CVE-2018-10637 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Fujielectric V-Server 3.3.24.0/4.0.3.0 A maliciously crafted project file may cause a buffer overflow, which may allow the attacker to execute arbitrary code that affects Fuji Electric V-Server Lite 4.0.3.0 and prior. | 7.8 |
| 2018-09-13 | CVE-2018-16745 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mgetty Project Mgetty 1.1.28 An issue was discovered in mgetty before 1.2.1. | 7.8 |