Total
8 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2025-48755 | 2025-05-28 | N/A | 2.9 LOW | ||
In the spiral-rs crate 0.2.0 for Rust, allocation can be attempted for a ZST (zero-sized type). | |||||
CVE-2025-47737 | 2025-05-12 | N/A | 2.9 LOW | ||
lib.rs in the trailer crate through 0.1.2 for Rust mishandles allocating with a size of zero. | |||||
CVE-2025-20189 | 2025-05-08 | N/A | 7.4 HIGH | ||
A vulnerability in the Cisco Express Forwarding functionality of Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers with Route Switch Processor 3 (RSP3C) could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) condition. This vulnerability is due to improper memory management when Cisco IOS XE Software is processing Address Resolution Protocol (ARP) messages. An attacker could exploit this vulnerability by sending crafted ARP messages at a high rate over a period of time to an affected device. A successful exploit could allow the attacker to exhaust system resources, which eventually triggers a reload of the active route switch processor (RSP). If a redundant RSP is not present, the router reloads. | |||||
CVE-2024-4853 | 2024-11-21 | N/A | 3.6 LOW | ||
Memory handling issue in editcap could cause denial of service via crafted capture file | |||||
CVE-2024-32503 | 1 Samsung | 16 Exynos 1080, Exynos 1080 Firmware, Exynos 1280 and 13 more | 2024-11-21 | N/A | 8.4 HIGH |
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper memory deallocation checking, which can result in a UAF (Use-After-Free) vulnerability. | |||||
CVE-2024-2955 | 2024-11-21 | N/A | 7.8 HIGH | ||
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file | |||||
CVE-2023-45510 | 1 Justdan96 | 1 Tsmuxer | 2024-11-21 | N/A | 7.5 HIGH |
tsMuxer version git-2539d07 was discovered to contain an alloc-dealloc-mismatch (operator new [] vs operator delete) error. | |||||
CVE-2023-41056 | 2 Fedoraproject, Redis | 2 Fedora, Redis | 2024-11-21 | N/A | 8.1 HIGH |
Redis is an in-memory database that persists on disk. Redis incorrectly handles resizing of memory buffers which can result in integer overflow that leads to heap overflow and potential remote code execution. This issue has been patched in version 7.0.15 and 7.2.4. |