Total
251 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-45552 | 2025-04-07 | N/A | 8.2 HIGH | ||
| Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards. | |||||
| CVE-2025-21428 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session. | |||||
| CVE-2025-21421 | 2025-04-07 | N/A | 7.8 HIGH | ||
| Memory corruption while processing escape code in API. | |||||
| CVE-2025-21434 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS may occur while parsing EHT operation IE or EHT capability IE. | |||||
| CVE-2025-21430 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session. | |||||
| CVE-2025-21448 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS may occur while parsing SSID in action frames. | |||||
| CVE-2025-21435 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS may occur while parsing extended IE in beacon. | |||||
| CVE-2025-21429 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request. | |||||
| CVE-2023-6936 | 1 Wolfssl | 1 Wolfssl | 2025-03-26 | N/A | 5.3 MEDIUM |
| In wolfSSL prior to 5.6.6, if callback functions are enabled (via the WOLFSSL_CALLBACKS flag), then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes (WOLFSSL_CALLBACKS is only intended for debugging). | |||||
| CVE-2025-24992 | 2025-03-11 | N/A | 5.5 MEDIUM | ||
| Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally. | |||||
| CVE-2024-43056 | 2025-03-03 | N/A | 5.5 MEDIUM | ||
| Transient DOS during hypervisor virtual I/O operation in a virtual machine. | |||||
| CVE-2024-57970 | 2025-02-18 | N/A | 4.0 MEDIUM | ||
| libarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in archive_read_support_format_tar.c via a TAR archive because it mishandles truncation in the middle of a GNU long linkname. | |||||
| CVE-2024-12011 | 2025-02-13 | N/A | 7.6 HIGH | ||
| A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The information disclosure can be triggered by leveraging a memory leak affecting the web server. A remote unauthenticated attacker can exploit this vulnerability in order to leak valid authentication tokens from the process memory associated to users currently logged to the system and bypass the authentication mechanism. | |||||
| CVE-2023-39540 | 1 Weston-embedded | 1 Uc-tcp-ip | 2025-02-12 | N/A | 5.9 MEDIUM |
| A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv4 ICMP packet. | |||||
| CVE-2023-39541 | 1 Weston-embedded | 1 Uc-tcp-ip | 2025-02-12 | N/A | 5.9 MEDIUM |
| A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv6 ICMPv6 packet. | |||||
| CVE-2024-49838 | 1 Qualcomm | 338 Ar8035, Ar8035 Firmware, Fastconnect 6200 and 335 more | 2025-02-05 | N/A | 8.2 HIGH |
| Information disclosure while parsing the OCI IE with invalid length. | |||||
| CVE-2024-49839 | 1 Qualcomm | 372 Ar8035, Ar8035 Firmware, Csr8811 and 369 more | 2025-02-05 | N/A | 8.2 HIGH |
| Memory corruption during management frame processing due to mismatch in T2LM info element. | |||||
| CVE-2024-38404 | 1 Qualcomm | 80 Ar8035, Ar8035 Firmware, Fastconnect 7800 and 77 more | 2025-02-05 | N/A | 7.5 HIGH |
| Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem. | |||||
| CVE-2024-38414 | 1 Qualcomm | 58 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 55 more | 2025-02-05 | N/A | 6.1 MEDIUM |
| Information disclosure while processing information on firmware image during core initialization. | |||||
| CVE-2024-38416 | 1 Qualcomm | 144 Ar8035, Ar8035 Firmware, C-v2x 9150 and 141 more | 2025-02-05 | N/A | 6.1 MEDIUM |
| Information disclosure during audio playback. | |||||