CWE-119: Buffer Overflow

This is a memory corruption vulnerability in macOS that could allow an attacker to execute arbitrary code or cause application crashes by processing a...

CVE-2023-51257 is an invalid memory write vulnerability in Jasper-Software Jasper v4.1.1 and earlier that allows local attackers to execute arbitrary ...

This is a macOS kernel memory corruption vulnerability that allows malicious applications to execute arbitrary code with kernel privileges. It affects...

This vulnerability allows arbitrary code execution when a user opens a malicious .lxt2 file in GTKWave. Attackers can craft files that trigger out-of-...

CVE-2023-38649 is an out-of-bounds write vulnerability in GTKWave's VZT file decompression that allows arbitrary code execution when a malicious .vzt ...

CVE-2023-37447 is a memory corruption vulnerability in GTKWave's VCD file parser that allows arbitrary code execution when a user opens a malicious .v...

This vulnerability allows arbitrary code execution when a user opens a malicious VCD file in GTKWave. Attackers can exploit out-of-bounds read vulnera...

CVE-2023-37445 is a critical vulnerability in GTKWave 3.3.115 where specially crafted VCD files can trigger out-of-bounds read/write conditions leadin...

CVE-2023-35970 is a heap-based buffer overflow vulnerability in GTKWave's FST file parser that allows arbitrary code execution when a user opens a mal...

CVE-2023-35958 is a heap-based buffer overflow vulnerability in GTKWave's FST file parser that allows arbitrary code execution when a user opens a mal...

This vulnerability allows arbitrary code execution when a user opens a malicious .fst file in GTKWave. Attackers can exploit heap-based buffer overflo...

This CVE describes an out-of-bounds write vulnerability in GTKWave's LXT2 file parser that allows arbitrary code execution when a malicious .lxt2 file...

This vulnerability allows memory corruption in Qualcomm modem UTILS when processing Diag commands with arbitrary address values. Attackers could poten...

This vulnerability allows memory corruption in Qualcomm Bluetooth controllers when parsing specific debug commands at the HCI interface level. Attacke...

This vulnerability involves multiple buffer overflow issues in TELLUS and TELLUS Lite software versions up to V4.0.17.0. Attackers can exploit these f...

This is a memory corruption vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel privileges. It a...

This is a memory corruption vulnerability in macOS that could allow arbitrary code execution or application crashes when processing malicious files. I...

This is a memory corruption vulnerability in Apple operating systems that allows an app to execute arbitrary code with kernel privileges. It affects i...

A memory buffer boundary vulnerability in OnSinView2 versions 2.0.1 and earlier allows attackers to execute arbitrary code or disclose information by ...

This vulnerability in NVIDIA DGX H100 BMC's host KVM daemon allows authenticated local attackers to corrupt kernel memory, potentially leading to arbi...

A memory corruption vulnerability in Tecnomatix Plant Simulation allows attackers to execute arbitrary code by tricking users into opening malicious S...

This vulnerability allows memory corruption in Qualcomm's WLAN HAL (Hardware Abstraction Layer) when parsing received network buffers containing TLV (...

This vulnerability in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0 is a memory corruption issue where opening a specially crafted V8 file can cause the ...

A memory corruption vulnerability in Solid Edge SE2023 allows attackers to execute arbitrary code by tricking users into opening malicious STP files. ...

CVE-2022-25713 is a memory corruption vulnerability in Qualcomm automotive chipsets that occurs during shared key export operations. Attackers can exp...

CVE-2023-1579 is a heap-based buffer overflow vulnerability in the bfd_getl64 function of binutils-gdb's Binary File Descriptor (BFD) library. This vu...

This is a critical local privilege escalation vulnerability in DriverGenius software. The vulnerability allows attackers with local access to exploit ...

A memory corruption vulnerability in Solid Edge CAD software allows attackers to execute arbitrary code by tricking users into opening malicious DWG f...

This vulnerability in SAP 3D Visual Enterprise Viewer allows remote code execution when a user opens a malicious SVG file. Attackers can exploit memor...

This vulnerability in SAP 3D Visual Enterprise Viewer allows remote code execution when a user opens a malicious VRML file. Attackers can exploit impr...

This vulnerability in SAP 3D Visual Enterprise Viewer allows remote code execution when a user opens a malicious Encapsulated PostScript (.eps) or AI....

This vulnerability in SAP 3D Visual Enterprise Viewer allows remote code execution when a user opens a malicious Wavefront Object (.obj) file. Attacke...

This vulnerability in SAP 3D Visual Enterprise Author allows remote code execution when a user opens a malicious Visual Design Stream (.vds) file. Att...

This vulnerability in SAP 3D Visual Enterprise Author allows remote code execution when a user opens a malicious PDF file. Attackers can exploit impro...

This vulnerability in SAP 3D Visual Enterprise Author allows remote code execution when a user opens a malicious IGES file. Attackers can exploit impr...

This vulnerability allows remote code execution when a user opens a malicious AutoCAD DXF file in SAP 3D Visual Enterprise Author. Attackers can explo...

CVE-2022-39808 is a memory corruption vulnerability in SAP 3D Visual Enterprise Author that allows remote code execution when a user opens a malicious...

This vulnerability allows remote code execution when a user opens a malicious CATIA5 Part (.catpart) file in SAP 3D Visual Enterprise Author version 9...

This vulnerability in SAP 3D Visual Enterprise Author allows remote code execution when a user opens a malicious ACIS Part and Assembly (.sat) file. A...

This vulnerability in SAP 3D Visual Enterprise Author allows remote code execution when a user opens a malicious Computer Graphics Metafile (.cgm) fil...

CVE-2021-26369 is an AMD Secure Processor bootloader vulnerability where malicious or compromised UApp/ABL can send malformed system calls, causing ou...

CVE-2021-0189 is a BIOS firmware vulnerability in certain Intel processors where improper pointer offset validation allows a privileged attacker to es...

CVE-2022-1441 is a buffer overflow vulnerability in MP4Box (part of GPAC) that occurs when parsing malicious MP4 files. Attackers can exploit this to ...

This vulnerability allows arbitrary code execution through a missing bounds check in Android's Bitmap processing. It affects Android 12 and 12L device...

Omron CX-Position versions 2.5.3 and earlier contain a memory corruption vulnerability when processing specific project files. This allows attackers t...

This vulnerability in the Linux kernel's BPF subsystem allows a local user to trigger an out-of-bounds memory write via the BPF_BTF_LOAD command. This...

CVE-2022-26125 is a buffer overflow vulnerability in FRRouting's IS-IS protocol implementation due to insufficient input validation of packet length. ...

CVE-2022-26127 is a buffer overflow vulnerability in FRRouting's Babel routing protocol daemon that allows remote attackers to execute arbitrary code ...

CVE-2022-26129 is a buffer overflow vulnerability in FRRouting's Babel routing daemon due to improper length validation of sub-TLV fields in Babel pro...

This vulnerability in Arm Mali GPU Kernel Driver allows non-privileged users to write to read-only memory pages, potentially leading to privilege esca...