Vulnerabilities > Out-of-bounds Write

DATE CVE VULNERABILITY TITLE RISK
2024-06-04 CVE-2024-34364 Out-of-bounds Write vulnerability in Envoyproxy Envoy
Envoy is a cloud-native, open source edge and service proxy.
network
low complexity
envoyproxy CWE-787
6.5
2024-06-04 CVE-2024-20873 Out-of-bounds Write vulnerability in Samsung Android 14.0
Improper input validation vulnerability in caminfo driver prior to SMR Jun-2024 Release 1 allows local privileged attackers to write out-of-bounds memory.
local
low complexity
samsung CWE-787
6.0
2024-06-04 CVE-2024-20877 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0
Heap out-of-bound write vulnerability in parsing grid image header in libsavscmn.so prior to SMR Jun-2024 Release 1 allows local attackers to execute arbitrary code.
local
low complexity
samsung CWE-787
7.8
2024-06-04 CVE-2024-20878 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0
Heap out-of-bound write vulnerability in parsing grid image in libsavscmn.so prior to SMR June-2024 Release 1 allows local attackers to execute arbitrary code.
local
low complexity
samsung CWE-787
7.8
2024-06-04 CVE-2024-20880 Out-of-bounds Write vulnerability in Samsung Android 12.0/13.0
Stack-based buffer overflow vulnerability in bootloader prior to SMR Jun-2024 Release 1 allows physical attackers to overwrite memory.
low complexity
samsung CWE-787
6.8
2024-06-03 CVE-2024-20066 Out-of-bounds Write vulnerability in Mediatek Nr16 and Nr17
In modem, there is a possible out of bounds write due to an incorrect bounds check.
network
low complexity
mediatek CWE-787
7.5
2024-06-03 CVE-2024-20075 Out-of-bounds Write vulnerability in Google Android 12.0/13.0/14.0
In eemgpu, there is a possible out of bounds write due to a missing bounds check.
local
low complexity
google CWE-787
6.7
2024-05-30 CVE-2024-5493 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in WebRTC in Google Chrome prior to 125.0.6422.141 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-787
8.8
2024-05-30 CVE-2024-5497 Out-of-bounds Write vulnerability in multiple products
Out of bounds memory access in Browser UI in Google Chrome prior to 125.0.6422.141 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject CWE-787
8.8
2024-05-30 CVE-2024-5499 Out-of-bounds Write vulnerability in multiple products
Out of bounds write in Streams API in Google Chrome prior to 125.0.6422.141 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
network
low complexity
google fedoraproject CWE-787
8.8