Vulnerabilities > Improper Validation of Array Index

DATE CVE VULNERABILITY TITLE RISK
2020-12-28 CVE-2020-29245 Improper Validation of Array Index vulnerability in TAG Project TAG 20200828
dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readAtomData.
network
low complexity
tag-project CWE-129
6.5
2020-12-28 CVE-2020-29244 Improper Validation of Array Index vulnerability in TAG Project TAG 20200828
dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readTextWithDescrFrame.
network
low complexity
tag-project CWE-129
6.5
2020-12-28 CVE-2020-29243 Improper Validation of Array Index vulnerability in TAG Project TAG 20200828
dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readAPICFrame.
network
low complexity
tag-project CWE-129
6.5
2020-12-28 CVE-2020-29242 Improper Validation of Array Index vulnerability in TAG Project TAG 20200828
dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readPICFrame.
network
low complexity
tag-project CWE-129
6.5
2020-12-26 CVE-2020-20412 Improper Validation of Array Index vulnerability in multiple products
lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file.
network
low complexity
xiph-org stepmania CWE-129
6.5
2020-11-16 CVE-2020-27485 Improper Validation of Array Index vulnerability in Garmin Forerunner 235 Firmware
Garmin Forerunner 235 before 8.20 is affected by: Array index error.
network
low complexity
garmin CWE-129
critical
9.9
2020-11-16 CVE-2020-27483 Improper Validation of Array Index vulnerability in Garmin Forerunner 235 Firmware
Garmin Forerunner 235 before 8.20 is affected by: Array index error.
network
low complexity
garmin CWE-129
critical
9.9
2020-11-12 CVE-2020-3639 Improper Validation of Array Index vulnerability in Qualcomm products
u'When a non standard SIP sigcomp message is received from the network, then there may be chances of using more UDVM cycle or memory overflow' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8017, APQ8037, APQ8053, MDM9250, MDM9607, MDM9628, MDM9640, MDM9650, MSM8108, MSM8208, MSM8209, MSM8608, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, QCM4290, QCM6125, QCS410, QCS4290, QCS603, QCS605, QCS610, QCS6125, QM215, QSM8350, SA415M, SA6145P, SA6150P, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA429W, SDA640, SDA660, SDA670, SDA845, SDA855, SDM1000, SDM429, SDM429W, SDM439, SDM450, SDM455, SDM630, SDM632, SDM636, SDM640, SDM660, SDM670, SDM710, SDM712, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8350, SM8350P, SXR1120, SXR1130
network
low complexity
qualcomm CWE-129
critical
9.8
2020-11-12 CVE-2020-3632 Improper Validation of Array Index vulnerability in Qualcomm products
u'Incorrect validation of ring context fetched from host memory can lead to memory overflow' in Snapdragon Compute, Snapdragon Mobile in QSM8350, SC7180, SDX55, SDX55M, SM6150, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR2130, SXR2130P
local
low complexity
qualcomm CWE-129
7.8
2020-11-02 CVE-2020-3673 Improper Validation of Array Index vulnerability in Qualcomm products
u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check to validate the index length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in Agatti, APQ8053, APQ8096AU, APQ8098, Bitra, Kamorta, MSM8905, MSM8909W, MSM8917, MSM8940, MSM8953, MSM8996AU, Nicobar, QCA6390, QCA6574AU, QCM2150, QCS605, QM215, Rennell, SA6155P, SA8155P, Saipan, SDA660, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
network
low complexity
qualcomm CWE-129
critical
9.8