CWE-126: CWE-126

This vulnerability allows remote code execution in .NET, .NET Framework, and Visual Studio applications through a buffer overflow condition (CWE-126)....

This vulnerability allows unauthenticated remote attackers to cause Cisco ASR 9000 Series routers with Lightspeed-Plus line cards to reset by sending ...

An unauthenticated remote attacker can send malicious MPLS echo packets to cause a denial of service on vulnerable Cisco NX-OS devices. This vulnerabi...

This vulnerability allows an unauthenticated remote attacker to cause a denial of service (DoS) by sending a malformed CAPWAP packet to affected Cisco...

A buffer over-read vulnerability in Microsoft Office Excel allows attackers to read beyond allocated memory boundaries, potentially leading to informa...

CVE-2024-33056 is a memory corruption vulnerability in Qualcomm's Shared Memory (SMEM) subsystem that allows attackers to potentially execute arbitrar...

This vulnerability allows attackers to read sensitive information from memory when User Equipment (UE) processes malformed RTP packets with manipulate...

This vulnerability allows information disclosure when a User Equipment (UE) device receives RTP packets from the network. It affects mobile devices wi...

This vulnerability allows attackers to read sensitive information from memory when processing malformed RTP packets with improper header lengths. It a...

This vulnerability allows information disclosure when processing RTCP goodbye packets in Qualcomm products. Attackers can exploit this to leak sensiti...

This vulnerability allows information disclosure during video calls when a device receives a malformed RTCP packet that doesn't conform to RFC standar...

This vulnerability allows attackers to read sensitive memory contents when parsing malformed OCI (Oracle Call Interface) information elements with inv...

This vulnerability allows memory corruption during Wi-Fi management frame processing due to a mismatch in T2LM (Target Wake Time Link Management) info...

This vulnerability allows attackers to read sensitive information from Wi-Fi chipsets when parsing Multi-Link Device (MLD) information elements. It af...

This vulnerability allows information disclosure in Qualcomm modem chipsets while processing System Information Block 5 (SIB5) messages. Attackers can...

This vulnerability allows information disclosure in Qualcomm data modems during VoLTE calls when an undefined RTCP FB line value is processed. Attacke...

This vulnerability allows memory corruption in Qualcomm data modem chipsets during mobile-originated or mobile-terminated VoLTE calls. Attackers could...

This vulnerability allows information disclosure in Qualcomm WLAN HOST software when sending DPP action frames with invalid source addresses. Attacker...

This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read while parsing DNS hostnames. It affects ...

This vulnerability allows attackers to read sensitive information from Bluetooth-enabled devices during A2DP audio streaming. It affects devices with ...

This vulnerability allows attackers to read sensitive information from memory in Qualcomm modems due to a buffer over-read while parsing WMS messages....

This vulnerability in Qualcomm modems allows attackers to read sensitive information from device memory due to improper handling of malformed IP heade...

This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read in IPv6 packet processing. It affects de...

CVE-2022-25747 is an information disclosure vulnerability in Qualcomm modems due to improper input validation when parsing CoAP (Constrained Applicati...

CVE-2022-25730 is an information disclosure vulnerability in Qualcomm modems where improper IP type checking during DNS server queries allows attacker...

This vulnerability allows attackers to read sensitive information from modem memory due to a buffer over-read when processing IPv4 packets. It affects...

CVE-2022-25728 is a buffer over-read vulnerability in Qualcomm modem firmware that allows information disclosure when processing DNS server responses....

CVE-2022-1908 is a buffer over-read vulnerability in libmobi library versions prior to 0.11 that allows reading beyond allocated memory boundaries whe...

This CVE describes a buffer overflow vulnerability in Qualcomm software where user-supplied data is added without proper bounds checking, leading to m...

A buffer over-read vulnerability in Windows TDX.sys allows an authenticated attacker to read beyond allocated memory boundaries, potentially leading t...

This vulnerability allows attackers to cause memory corruption by providing invalid userspace addresses to the MCDM IOCTL interface. This affects syst...

CVE-2025-59933 is a buffer read overflow vulnerability in libvips when compiled with PDF support via poppler. It allows attackers to cause denial of s...

CVE-2025-49659 is a buffer over-read vulnerability in Windows TDX.sys that allows an authenticated attacker to read beyond allocated memory boundaries...

A buffer over-read vulnerability in Virtual Hard Disk (VHDX) handling allows local attackers to read beyond allocated memory boundaries. This can lead...

A buffer over-read vulnerability in Virtual Hard Disk (VHDX) handling allows local attackers to read beyond allocated memory boundaries. This can lead...

This vulnerability allows memory corruption when processing escape codes in a Qualcomm API, potentially leading to arbitrary code execution. It affect...

This vulnerability allows memory corruption when handling IOCTL calls from user-space to set latency levels in Qualcomm components. Attackers could po...

This vulnerability in the Windows Cloud Files Mini Filter Driver allows attackers to gain SYSTEM-level privileges on affected systems. It affects Wind...

This vulnerability allows memory corruption when processing FIPS encryption/decryption IOCTL calls from user-space in Qualcomm components. Attackers c...

This vulnerability allows attackers to cause memory corruption through a specific IOCTL call related to FIPS encryption/decryption validation. It affe...

This vulnerability in the Windows Common Log File System (CLFS) driver allows an authenticated attacker to gain SYSTEM-level privileges by exploiting ...

This vulnerability allows remote code execution through specially crafted Office graphics files. Attackers can exploit it by tricking users into openi...

This Windows Graphics Component vulnerability allows an attacker to gain SYSTEM-level privileges on affected systems by exploiting a buffer overflow c...

This vulnerability allows an authenticated attacker to execute arbitrary code with elevated privileges on Windows Hyper-V hosts. It affects systems ru...

This vulnerability allows an authenticated attacker to elevate privileges on a Windows system by exploiting a flaw in the Remote Access Connection Man...

This CVE describes a memory corruption vulnerability in Qualcomm's trusted execution environment when processing buffer initialization for certain rep...