Vulnerabilities > Rdkcentral

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-04	CVE-2023-20829	Out-of-bounds Write vulnerability in multiple products In gps, there is a possible out of bounds write due to a missing bounds check. local low complexity linuxfoundation rdkcentral google openwrt CWE-787	6.7
2023-09-04	CVE-2023-20830	Out-of-bounds Write vulnerability in multiple products In gps, there is a possible out of bounds write due to a missing bounds check. local low complexity linuxfoundation rdkcentral google openwrt CWE-787	6.7
2023-09-04	CVE-2023-20831	Out-of-bounds Write vulnerability in multiple products In gps, there is a possible out of bounds write due to a missing bounds check. local low complexity linuxfoundation rdkcentral google openwrt CWE-787	6.7
2023-09-04	CVE-2023-20832	Out-of-bounds Write vulnerability in multiple products In gps, there is a possible out of bounds write due to a missing bounds check. local low complexity linuxfoundation rdkcentral google openwrt CWE-787	6.7
2023-08-07	CVE-2023-20790	Out-of-bounds Write vulnerability in multiple products In nvram, there is a possible out of bounds write due to a missing bounds check. local low complexity linuxfoundation rdkcentral google openwrt CWE-787	4.4
2023-08-07	CVE-2023-20796	Out-of-bounds Write vulnerability in multiple products In power, there is a possible memory corruption due to an incorrect bounds check. local low complexity linuxfoundation rdkcentral google openwrt CWE-787	4.4
2023-06-06	CVE-2023-20725	Out-of-bounds Write vulnerability in multiple products In preloader, there is a possible out of bounds write due to a missing bounds check. local low complexity rdkcentral google openwrt CWE-787	6.7
2023-05-15	CVE-2023-20726	Missing Authorization vulnerability in multiple products In mnld, there is a possible leak of GPS location due to a missing permission check. local low complexity linuxfoundation rdkcentral google openwrt CWE-862	3.3
2019-06-20	CVE-2019-6964	Out-of-bounds Read vulnerability in Rdkcentral Rdkb Ccsppandm Rdkb201812171 A heap-based buffer over-read in Service_SetParamStringValue in cosa_x_cisco_com_ddns_dml.c of the RDK RDKB-20181217-1 CcspPandM module may allow attackers with login credentials to achieve information disclosure and code execution by crafting an AJAX call responsible for DDNS configuration with an exactly 64-byte username, password, or domain, for which the buffer size is insufficient for the final '\0' character. network low complexity rdkcentral CWE-125	8.8
2019-06-20	CVE-2019-6963	Out-of-bounds Write vulnerability in Rdkcentral Rdkb Ccsppandm Rdkb201812171 A heap-based buffer overflow in cosa_dhcpv4_dml.c in the RDK RDKB-20181217-1 CcspPandM module may allow attackers with login credentials to achieve remote code execution by crafting a long buffer in the "Comment" field of an IP reservation form in the admin panel. network low complexity rdkcentral CWE-787	8.8

Vulnerabilities > Rdkcentral {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Rdkcentral"}]}

Vulnerabilities > Rdkcentral