Vulnerabilities > Improper Validation of Array Index

DATE CVE VULNERABILITY TITLE RISK
2021-03-17 CVE-2020-11226 Improper Validation of Array Index vulnerability in Qualcomm products
Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
network
low complexity
qualcomm CWE-129
7.5
2021-03-15 CVE-2020-25241 Improper Validation of Array Index vulnerability in Siemens products
A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6).
network
low complexity
siemens CWE-129
7.5
2021-02-22 CVE-2020-11271 Improper Validation of Array Index vulnerability in Qualcomm products
Possible out of bounds while accessing global control elements due to race condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-129
7.8
2021-02-22 CVE-2020-11187 Improper Validation of Array Index vulnerability in Qualcomm products
Possible memory corruption in BSI module due to improper validation of parameter count in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile
local
low complexity
qualcomm CWE-129
7.8
2021-02-22 CVE-2020-11163 Improper Validation of Array Index vulnerability in Qualcomm products
Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
network
low complexity
qualcomm CWE-129
critical
9.8
2021-01-21 CVE-2020-11146 Improper Validation of Array Index vulnerability in Qualcomm products
Out of bound write while copying data using IOCTL due to lack of check of array index received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
local
low complexity
qualcomm CWE-129
7.8
2021-01-11 CVE-2021-3121 Improper Validation of Array Index vulnerability in multiple products
An issue was discovered in GoGo Protobuf before 1.3.2.
network
low complexity
golang hashicorp CWE-129
8.6
2021-01-05 CVE-2020-36067 Improper Validation of Array Index vulnerability in Gjson Project Gjson
GJSON <=v1.6.5 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a crafted GET call.
network
low complexity
gjson-project CWE-129
7.5
2021-01-02 CVE-2020-28852 Improper Validation of Array Index vulnerability in Golang Text
In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag.
network
low complexity
golang CWE-129
7.5
2021-01-02 CVE-2020-28851 Improper Validation of Array Index vulnerability in Golang GO 1.15.4
In x/text in Go 1.15.4, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension.
network
low complexity
golang CWE-129
7.5