Vulnerabilities > Out-of-bounds Write
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-16 | CVE-2017-0852 | Out-of-bounds Write vulnerability in Google Android 5.0.2/5.1.1/6.0 A denial of service vulnerability in the Android media framework (libhevc). | 7.5 |
| 2017-11-16 | CVE-2017-0834 | Out-of-bounds Write vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libmpeg2). | 7.8 |
| 2017-11-16 | CVE-2017-11012 | Out-of-bounds Write vulnerability in Google Android In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when processing a specially crafted QCA_NL80211_VENDOR_SUBCMD_ENCRYPTION_TEST cfg80211 vendor command a stack-based buffer overflow can occur. | 7.8 |
| 2017-11-07 | CVE-2017-2894 | Out-of-bounds Write vulnerability in Cesanta Mongoose 6.8 An exploitable stack buffer overflow vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. | 9.8 |
| 2017-10-30 | CVE-2017-1000255 | Out-of-bounds Write vulnerability in Linux Kernel On Linux running on PowerPC hardware (Power8 or later) a user process can craft a signal frame and then do a sigreturn so that the kernel will take an exception (interrupt), and use the r1 value *from the signal frame* as the kernel stack pointer. | 5.5 |
| 2017-10-27 | CVE-2017-5113 | Out-of-bounds Write vulnerability in multiple products Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 8.8 |
| 2017-10-27 | CVE-2017-5095 | Out-of-bounds Write vulnerability in multiple products Stack overflow in PDFium in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit stack corruption via a crafted PDF file. | 8.8 |
| 2017-10-16 | CVE-2015-7504 | Out-of-bounds Write vulnerability in multiple products Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a series of packets in loopback mode. | 8.8 |
| 2017-10-16 | CVE-2017-15289 | Out-of-bounds Write vulnerability in Qemu The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation. | 6.0 |
| 2017-10-16 | CVE-2017-15303 | Out-of-bounds Write vulnerability in Cpuid Cpu-Z 1.42 In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine (while CPU-Z is running) can issue an ioctl 0x9C402430 call to the kernel-mode driver (e.g., cpuz141_x64.sys for version 1.41). | 7.8 |