Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2024-11-05 CVE-2024-50115 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory Ignore nCR3[4:0] when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of nCR3. In the absolute worst case scenario, failure to ignore bits 4:0 can result in an out-of-bounds read, e.g.
local
low complexity
linux CWE-125
7.1
2024-11-05 CVE-2024-50123 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: bpf: Add the missing BPF_LINK_TYPE invocation for sockmap There is an out-of-bounds read in bpf_link_show_fdinfo() for the sockmap link fd.
local
low complexity
linux CWE-125
7.1
2024-11-05 CVE-2024-50128 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: net: wwan: fix global oob in wwan_rtnl_policy The variable wwan_rtnl_link_ops assign a *bigger* maxtype which leads to a global out-of-bounds read when parsing the netlink attributes.
local
low complexity
linux CWE-125
7.1
2024-11-05 CVE-2024-47402 Out-of-bounds Read vulnerability in Openatom Openharmony
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through out-of-bounds read.
local
low complexity
openatom CWE-125
5.5
2024-11-04 CVE-2024-38403 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing BTM ML IE when per STA profile is not included.
network
low complexity
qualcomm CWE-125
6.5
2024-11-04 CVE-2024-38405 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing the CU information from RNR IE.
network
low complexity
qualcomm CWE-125
6.5
2024-10-29 CVE-2024-8588 Out-of-bounds Read vulnerability in Autodesk products
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerability.
local
low complexity
autodesk CWE-125
7.8
2024-10-29 CVE-2024-8589 Out-of-bounds Read vulnerability in Autodesk products
A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Out-of-Bounds Read vulnerability.
local
low complexity
autodesk CWE-125
7.8
2024-10-29 CVE-2024-9827 Out-of-bounds Read vulnerability in Autodesk products
A maliciously crafted CATPART file when parsed in CC5Dll.dll through Autodesk AutoCAD can force an Out-of-Bounds Read vulnerability.
local
low complexity
autodesk CWE-125
7.8
2024-10-29 CVE-2024-10464 Out-of-bounds Read vulnerability in Mozilla Thunderbird
Repeated writes to history interface attributes could have been used to cause a Denial of Service condition in the browser.
network
low complexity
mozilla CWE-125
6.5