Vulnerabilities > Out-of-bounds Write
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-27 | CVE-2024-56626 | Out-of-bounds Write vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write An offset from client could be a negative value, It could allows to write data outside the bounds of the allocated buffer. Note that this issue is coming when setting 'vfs objects = streams_xattr parameter' in ksmbd.conf. | 7.8 |
| 2024-12-27 | CVE-2020-9086 | Out-of-bounds Write vulnerability in Huawei B612 Firmware B612S25Dtcpuv100R001B192D03Sp00C234/B612S25Dtcpuv100R001B192D03Sp00C287/B612S25Dtcpuv100R001B192D05Sp00C00 There is a buffer error vulnerability in some Huawei product. | 4.3 |
| 2024-12-27 | CVE-2020-9211 | Out-of-bounds Write vulnerability in Huawei Mate 30 Firmware 10.1.0.126(C00E125R5P3) There is an out-of-bound read and write vulnerability in Huawei smartphone. | 7.2 |
| 2024-12-27 | CVE-2020-9253 | Out-of-bounds Write vulnerability in Huawei Lion-Al00C Firmware 10.0.0.205(C00E202R7P2) There is a stack overflow vulnerability in some Huawei smart phone. | 6.5 |
| 2024-12-19 | CVE-2024-11157 | Out-of-bounds Write vulnerability in Rockwellautomation Arena A third-party vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to write beyond the boundaries of allocated memory in a DOE file. | 7.3 |
| 2024-12-19 | CVE-2020-12820 | Out-of-bounds Write vulnerability in Fortinet Fortios Under non-default configuration, a stack-based buffer overflow in FortiOS version 6.0.10 and below, version 5.6.12 and below may allow a remote attacker authenticated to the SSL VPN to crash the FortiClient NAC daemon (fcnacd) and potentially execute arbitrary code via requesting a large FortiClient file name. | 8.8 |
| 2024-12-19 | CVE-2020-12819 | Out-of-bounds Write vulnerability in Fortinet Fortios A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5.6.12, 6.0.10, 6.2.4 and 6.4.1 and earlier may allow a remote attacker with valid SSL VPN credentials to crash the SSL VPN daemon by sending a large LCP packet, when tunnel mode is enabled. | 7.5 |
| 2024-12-19 | CVE-2022-44512 | Out-of-bounds Write vulnerability in Adobe products Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2024-12-19 | CVE-2022-44513 | Out-of-bounds Write vulnerability in Adobe products Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. | 7.8 |
| 2024-12-18 | CVE-2024-12693 | Out-of-bounds Write vulnerability in Google Chrome Out of bounds memory access in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. | 8.8 |