CWE:
 

Topic
Date
Author
High
Google SketchUp lib3ds 3DS Importer Memory Corruption
18.01.2010
CORE


CVEMAP Search Results

CVE
Details
Description
2018-09-26
Medium
CVE-2018-14815

Vendor: Fujielectric
Software: V-server fir...
 

 
Fuji Electric V-Server 4.0.3.0 and prior, Several out-of-bounds write vulnerabilities have been identified, which may allow remote code execution.

 
2018-09-25
Medium
CVE-2018-12848

Vendor: Adobe
Software: Acrobat
 

 
Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and earlier, and 2015.006.30448 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.

 
2018-09-24
Low
CVE-2018-17436

Vendor: Hdfgroup
Software: HDF5
 

 
ReadCode() in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (invalid write access) via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file.

 
2018-09-19
Medium
CVE-2018-11903

Vendor: Google
Software: Android
 

 
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of length validation check for value received from caller function used as an array index for WMA interfaces can lead to OOB write in WLAN HOST.

 
2018-09-18
Medium
CVE-2018-11851

Vendor: Google
Software: Android
 

 
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on input received to calculate the buffer length can lead to out of bound write to kernel stack.

 
Medium
CVE-2018-11852

Vendor: Google
Software: Android
 

 
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper check In the WMA API for the inputs received from the firmware and then fills the same to the host structure will lead to OOB write.

 
Medium
CVE-2018-11296

Vendor: Google
Software: Android
 

 
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a message from firmware in WLAN handler, a buffer overwrite can occur.

 
Medium
CVE-2018-11295

Vendor: Google
Software: Android
 

 
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, WMA handler carries a fixed event data from the firmware to the host . If the length and anqp length from this event data exceeds the max length, an OOB write would happen.

 
2018-09-16
Medium
CVE-2018-17101

Vendor: Libtiff
Software: Libtiff
 

 
An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

 
2018-09-13
Low
CVE-2018-16999

Vendor: NASM
Software: Netwide asse...
 

 
Netwide Assembler (NASM) 2.14rc15 has an invalid memory write (segmentation fault) in expand_smacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top