Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2020-12-15 CVE-2020-8936 Out-of-bounds Read vulnerability in Google Asylo
An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to UntrustedCall.
local
low complexity
google CWE-125
5.5
5.5
2020-12-14 CVE-2020-0463 Out-of-bounds Read vulnerability in Google Android
In sdp_server_handle_client_req of sdp_server.cc, there is a possible out of bounds read due to a missing bounds check.
network
low complexity
google CWE-125
7.5
7.5
2020-12-11 CVE-2020-25110 Out-of-bounds Read vulnerability in Ethernut Nut/Os 4.10/5.1
An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1.
network
low complexity
ethernut CWE-125
critical
 9.8
9.8
2020-12-11 CVE-2020-25109 Out-of-bounds Read vulnerability in Ethernut Nut/Os 4.10/5.1
An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1.
network
low complexity
ethernut CWE-125
critical
 9.8
9.8
2020-12-11 CVE-2020-25107 Out-of-bounds Read vulnerability in Ethernut Nut/Os 4.10/5.1
An issue was discovered in the DNS implementation in Ethernut in Nut/OS 5.1.
network
low complexity
ethernut CWE-125
critical
 9.8
9.8
2020-12-11 CVE-2020-24383 Out-of-bounds Read vulnerability in Butok Fnet
An issue was discovered in FNET through 4.6.4.
network
low complexity
butok CWE-125
critical
 9.1
9.1
2020-12-11 CVE-2020-24341 Out-of-bounds Read vulnerability in Altran Picotcp and Picotcp-Ng
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0.
network
low complexity
altran CWE-125
critical
 9.1
9.1
2020-12-11 CVE-2020-24340 Out-of-bounds Read vulnerability in Altran Picotcp and Picotcp-Ng
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0.
network
low complexity
altran CWE-125
7.5
7.5
2020-12-11 CVE-2020-24339 Out-of-bounds Read vulnerability in Altran Picotcp and Picotcp-Ng
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0.
network
low complexity
altran CWE-125
7.5
7.5
2020-12-11 CVE-2020-24334 Out-of-bounds Read vulnerability in UIP Project UIP
The code that processes DNS responses in uIP through 1.0, as used in Contiki and Contiki-NG, does not check whether the number of responses specified in the DNS packet header corresponds to the response data available in the DNS packet, leading to an out-of-bounds read and Denial-of-Service in resolv.c.
network
low complexity
uip-project CWE-125
8.2
8.2