Vulnerabilities > Improper Validation of Array Index

DATE CVE VULNERABILITY TITLE RISK
2023-06-14 CVE-2023-2570 Improper Validation of Array Index vulnerability in Schneider-Electric Ecostruxure Foxboro DCS Control Core Services
A CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an unpredictable index to an IOCTL call in the Foxboro.sys driver.
local
low complexity
schneider-electric CWE-129
7.8
2023-05-25 CVE-2023-0950 Improper Validation of Array Index vulnerability in multiple products
Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded.
local
low complexity
libreoffice debian CWE-129
7.8
2023-05-02 CVE-2022-33281 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames.
local
low complexity
qualcomm CWE-129
7.8
2023-04-18 CVE-2023-28004 Improper Validation of Array Index vulnerability in Schneider-Electric Powerlogic Hdpm6000 Firmware
A CWE-129: Improper validation of an array index vulnerability exists where a specially crafted Ethernet request could result in denial of service or remote code execution.
network
low complexity
schneider-electric CWE-129
critical
9.8
2023-04-14 CVE-2023-2008 Improper Validation of Array Index vulnerability in Linux Kernel
A flaw was found in the Linux kernel's udmabuf device driver.
local
low complexity
linux CWE-129
7.8
2023-04-13 CVE-2022-33289 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
low complexity
qualcomm CWE-129
6.8
2023-04-13 CVE-2022-33302 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
local
low complexity
qualcomm CWE-129
7.8
2023-04-10 CVE-2023-26066 Improper Validation of Array Index vulnerability in Lexmark products
Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index.
network
low complexity
lexmark CWE-129
critical
9.8
2023-03-23 CVE-2023-20080 Improper Validation of Array Index vulnerability in Cisco IOS and IOS XE
A vulnerability in the IPv6 DHCP version 6 (DHCPv6) relay and server features of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to trigger a denial of service (DoS) condition.
network
low complexity
cisco CWE-129
7.5
2023-03-10 CVE-2022-33256 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in Multi-mode call processor.
network
low complexity
qualcomm CWE-129
critical
9.8