Vulnerabilities > Out-of-bounds Write
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-20 | CVE-2021-46325 | Out-of-bounds Write vulnerability in Espruino 2.10.246 Espruino 2v10.246 was discovered to contain a stack buffer overflow via src/jsutils.c in vcbprintf. | 6.8 |
| 2022-01-20 | CVE-2021-46326 | Out-of-bounds Write vulnerability in Moddable SDK 11.5.0 Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __asan_memcpy. | 6.8 |
| 2022-01-20 | CVE-2021-46328 | Out-of-bounds Write vulnerability in Moddable SDK 11.5.0 Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component __libc_start_main. | 6.8 |
| 2022-01-20 | CVE-2021-46332 | Out-of-bounds Write vulnerability in Moddable SDK 11.5.0 Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via xs/sources/xsDataView.c in fxUint8Getter. | 6.8 |
| 2022-01-20 | CVE-2021-46334 | Out-of-bounds Write vulnerability in Moddable SDK 11.5.0 Moddable SDK v11.5.0 was discovered to contain a stack buffer overflow via the component __interceptor_strcat. | 6.8 |
| 2022-01-20 | CVE-2021-45417 | Out-of-bounds Write vulnerability in multiple products AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow. local low complexity advanced-intrusion-detection-environment-project redhat fedoraproject canonical debian CWE-787 | 7.8 |
| 2022-01-19 | CVE-2021-33912 | Out-of-bounds Write vulnerability in multiple products libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of incorrect sprintf usage in SPF_record_expand_data in spf_expand.c. | 9.8 |
| 2022-01-19 | CVE-2021-33913 | Out-of-bounds Write vulnerability in Libspf2 Project Libspf2 libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of SPF_record_expand_data in spf_expand.c. | 9.8 |
| 2022-01-18 | CVE-2021-34402 | Out-of-bounds Write vulnerability in Nvidia Shield Experience NVIDIA Tegra kernel driver contains a vulnerability in NVIDIA NVDEC, where a user with high privileges might be able to read from or write to a memory location that is outside the intended boundary of the buffer, which may lead to denial of service, Information disclosure, loss of Integrity, or possible escalation of privileges. | 6.7 |
| 2022-01-18 | CVE-2020-14107 | Out-of-bounds Write vulnerability in MI Xiaomi Mirror Screen A stack overflow in the HTTP server of Cast can be exploited to make the app crash in LAN. | 5.0 |