Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-20088 Out-of-bounds Read vulnerability in Google Android 12.0/13.0/14.0
In keyinstall, there is a possible out of bounds read due to a missing bounds check.
local
low complexity
google CWE-125
4.4
2024-09-02 CVE-2024-38382 Out-of-bounds Read vulnerability in Openatom Openharmony 4.0/4.0.1
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
local
low complexity
openatom CWE-125
5.5
2024-09-02 CVE-2024-39612 Out-of-bounds Read vulnerability in Openatom Openharmony 4.0/4.0.1
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.
local
low complexity
openatom CWE-125
5.5
2024-09-02 CVE-2024-39775 Out-of-bounds Read vulnerability in Openatom Openharmony 4.0
in OpenHarmony v4.1.0 and prior versions allow a remote attacker cause information leak through out-of-bounds Read.
network
low complexity
openatom CWE-125
7.5
2024-08-31 CVE-2024-0109 Out-of-bounds Read vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause a crash by passing in a malformed ELF file.
local
low complexity
nvidia CWE-125
3.3
2024-08-27 CVE-2024-5991 Out-of-bounds Read vulnerability in Wolfssl
In function MatchDomainName(), input param str is treated as a NULL terminated string despite being user provided and unchecked.
network
low complexity
wolfssl CWE-125
7.5
2024-08-22 CVE-2024-38210 Out-of-bounds Read vulnerability in Microsoft Edge Chromium
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
local
low complexity
microsoft CWE-125
7.8
2024-08-22 CVE-2022-48929 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to out of bounds access into reg2btf_ids. When commit e6ac2450d6de ("bpf: Support bpf program calling kernel function") added kfunc support, it defined reg2btf_ids as a cheap way to translate the verifier reg type to the appropriate btf_vmlinux BTF ID, however commit c25b2ae13603 ("bpf: Replace PTR_TO_XXX_OR_NULL with PTR_TO_XXX | PTR_MAYBE_NULL") moved the __BPF_REG_TYPE_MAX from the last member of bpf_reg_type enum to after the base register types, and defined other variants using type flag composition.
local
low complexity
linux CWE-125
5.5
2024-08-22 CVE-2022-48932 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte When adding a rule with 32 destinations, we hit the following out-of-band access issue: BUG: KASAN: slab-out-of-bounds in mlx5_cmd_dr_create_fte+0x18ee/0x1e70 This patch fixes the issue by both increasing the allocated buffers to accommodate for the needed actions and by checking the number of actions to prevent this issue when a rule with too many actions is provided.
local
low complexity
linux CWE-125
5.5
2024-08-21 CVE-2022-48871 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: tty: serial: qcom-geni-serial: fix slab-out-of-bounds on RX FIFO buffer Driver's probe allocates memory for RX FIFO (port->rx_fifo) based on default RX FIFO depth, e.g.
local
low complexity
linux CWE-125
7.1