CWE-129: CWE-129

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing command streams through WMI interfaces...

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when parsing WMI command parameters. Attackers could p...

This vulnerability allows memory corruption in Qualcomm WLAN handlers when processing PhyID in Tx status handlers. It affects devices with Qualcomm ch...

This vulnerability in the Linux kernel's udmabuf driver allows local attackers to escalate privileges and execute arbitrary code with kernel permissio...

This vulnerability allows attackers to execute arbitrary code or cause denial of service on Qualcomm Snapdragon devices by sending specially crafted D...

This vulnerability allows heap overflow attacks due to improper index validation in Qualcomm Snapdragon chipsets before allocating and writing to heap...

CVE-2025-65562 is an unauthenticated denial-of-service vulnerability in free5GC UPF where specially crafted PFCP Session Deletion Requests with large ...

A denial-of-service vulnerability in Go's Fiber web framework allows attackers to crash applications by sending specially crafted requests with negati...

This vulnerability in OneFlow v0.9.1 allows attackers to cause Denial of Service (DoS) by providing a negative index that exceeds the valid range, pot...

This vulnerability in OneFlow v0.9.1 allows attackers to cause Denial of Service (DoS) by passing an empty array to the oneflow.dot function. The issu...

This vulnerability in rimedo-ts 0.1.1 allows attackers to cause a denial-of-service (DoS) by triggering a slice bounds out-of-range panic in the reade...

CVE-2024-23084 is a disputed vulnerability in Apfloat v1.10.1 where an ArrayIndexOutOfBoundsException occurs in the DoubleCRTMath::add method. If expl...

This SQLite vulnerability allows array-bounds overflow when processing extremely large string arguments (billions of bytes) through certain C API func...

This CVE describes an Improper Validation of Array Index vulnerability in Huawei smartphones running HarmonyOS. Attackers could exploit this to cause ...

CVE-2020-18430 is an array index error in tinyexr 0.9.5's DecodeEXRImage component that can cause denial of service through application crashes. This ...

A local privilege escalation vulnerability in the Foxboro.sys driver allows authenticated attackers to cause denial-of-service through improper array ...

A locking vulnerability in the Linux kernel's Intel ice network driver causes a potential deadlock during device removal when Tx timestamp tracking is...

This vulnerability is an out-of-bounds read in the NTFS3 filesystem driver in the Linux kernel, specifically in the ntfs_listxattr function. It allows...

This vulnerability in the Foxboro.sys driver allows local attackers to cause denial-of-service or potentially execute kernel code by sending specially...

This vulnerability in Apache Guacamole allows authenticated attackers with access to text-based connections (like SSH) to execute arbitrary code on th...

This CVE describes a memory corruption vulnerability in Qualcomm components where asynchronous modification of shared memory by user applications whil...

An improper array index validation vulnerability in Packetbeat's MongoDB protocol parser allows attackers to cause buffer overflows via specially craf...

This CVE describes two denial-of-service vulnerabilities in Metricbeat where specially crafted payloads sent to Graphite or Zookeeper metricsets, or m...

This vulnerability allows users to crash the vLLM inference engine by passing malformed multimodal embedding inputs with correct dimensionality but in...

This vulnerability in ONOS onos-lib-go allows an attacker to trigger an index out-of-range panic in the ASN.1 APER GetBitString function when a zero v...

This vulnerability in cert-manager allows attackers to cause denial-of-service by poisoning DNS caches during ACME DNS-01 challenge processing. Attack...

This is a memory corruption vulnerability in the Linux kernel's wilc1000 WiFi driver where improper memory allocation leads to a buffer overflow. Atta...

This CVE describes an array bounds vulnerability in the Linux kernel's Samsung clock management unit driver. When UBSAN (Undefined Behavior Sanitizer)...

A Linux kernel vulnerability in the Stochastic Fair Queueing (SFQ) network scheduler allows an array index out-of-bounds access when configured with a...

This CVE-2024-26969 is a buffer overflow vulnerability in the Linux kernel's Qualcomm GCC IPQ8074 clock driver. Missing termination in frequency table...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's Qualcomm GCC IPQ5018 clock driver. Missing termination in frequency table...

This CVE describes an out-of-bounds access vulnerability in an audio codec module that could allow attackers to cause denial of service conditions. Th...

This CVE describes a memory corruption vulnerability in the mailbox component of Qualcomm automotive systems. Attackers could potentially execute arbi...

This CVE describes an out-of-bounds array access vulnerability in Huawei's location service module due to insufficient data verification. Successful e...

Apache NimBLE versions through 1.7.0 have an improper array index validation vulnerability in HCI event handling that could allow memory corruption an...

An array index error in OISM libcoap's TLS verification callback allows remote attackers to cause denial of service via a crafted DTLS handshake. This...

This vulnerability in EMI mod for Minecraft allows in-game item duplication through improper validation of slot indexes and stack counts. It affects a...

This vulnerability involves improper array index verification in an audio codec module, allowing attackers to potentially disrupt audio decoding funct...

This vulnerability allows a local attacker to exploit improper input validation in AMD's RAS TA Driver to access out-of-bounds memory. This could lead...

This CVE describes a heap-based buffer overflow vulnerability in alsa-lib's topology mixer control decoder. Attackers can exploit this by providing a ...

This vulnerability in Taiko Alethia rollup software allows corruption of the verified chain pointer when batch verification fails, potentially disrupt...