Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by CWE-787
Total 7966 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-38977 1 Huawei 1 Harmonyos 2022-10-18 N/A 7.5 HIGH
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
CVE-2022-41578 1 Huawei 2 Emui, Harmonyos 2022-10-18 N/A 9.8 CRITICAL
The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information.
CVE-2022-39120 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2022-10-17 N/A 5.5 MEDIUM
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-39105 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2022-10-17 N/A 5.5 MEDIUM
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel.
CVE-2022-38690 2 Google, Unisoc 14 Android, S8000, Sc7731e and 11 more 2022-10-17 N/A 5.5 MEDIUM
In camera driver, there is a possible memory corruption due to improper locking. This could lead to local denial of service in kernel.
CVE-2022-41686 1 Openharmony 1 Openharmony 2022-10-17 N/A 4.4 MEDIUM
OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have an Out-of-bound memory read and write vulnerability in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could read out-of-bound memory leading sensitive to information disclosure. The processes with system user UID run on the device would be able to write out-of-bound memory which could lead to unspecified memory corruption.
CVE-2022-27942 2 Broadcom, Fedoraproject 2 Tcpreplay, Fedora 2022-10-16 6.8 MEDIUM 7.8 HIGH
tcpprep in Tcpreplay 4.4.1 has a heap-based buffer over-read in parse_mpls in common/get.c.
CVE-2022-27941 2 Broadcom, Fedoraproject 2 Tcpreplay, Fedora 2022-10-16 6.8 MEDIUM 7.8 HIGH
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_l2len_protocol in common/get.c.
CVE-2022-37047 2 Broadcom, Fedoraproject 2 Tcpreplay, Fedora 2022-10-16 N/A 7.8 HIGH
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_ipv6_next at common/get.c:713. NOTE: this is different from CVE-2022-27940.
CVE-2022-37049 2 Broadcom, Fedoraproject 2 Tcpreplay, Fedora 2022-10-16 N/A 7.8 HIGH
The component tcpprep in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in parse_mpls at common/get.c:150. NOTE: this is different from CVE-2022-27942.
CVE-2022-27940 2 Broadcom, Fedoraproject 2 Tcpreplay, Fedora 2022-10-16 6.8 MEDIUM 7.8 HIGH
tcprewrite in Tcpreplay 4.4.1 has a heap-based buffer over-read in get_ipv6_next in common/get.c.
CVE-2021-45948 1 Assimp 1 Assimp 2022-10-16 4.3 MEDIUM 5.5 MEDIUM
Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in _m3d_safestr (called from m3d_load and Assimp::M3DWrapper::M3DWrapper).
CVE-2022-27418 1 Broadcom 1 Tcpreplay 2022-10-16 5.1 MEDIUM 7.8 HIGH
Tcpreplay v4.4.1 has a heap-based buffer overflow in do_checksum_math at /tcpedit/checksum.c.
CVE-2022-37048 2 Broadcom, Fedoraproject 2 Tcpreplay, Fedora 2022-10-16 N/A 7.8 HIGH
The component tcprewrite in Tcpreplay v4.4.1 was discovered to contain a heap-based buffer overflow in get_l2len_protocol at common/get.c:344. NOTE: this is different from CVE-2022-27941.
CVE-2021-0699 1 Google 1 Android 2022-10-14 N/A 7.8 HIGH
In HTBLogKM of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-242345178
CVE-2022-20397 1 Google 1 Android 2022-10-14 N/A 7.8 HIGH
In SitRilClient_OnResponse of SitRilSe.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-223086933References: N/A
CVE-2022-35051 1 Otfcc Project 1 Otfcc 2022-10-14 N/A 6.5 MEDIUM
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b55af.
CVE-2022-35049 1 Otfcc Project 1 Otfcc 2022-10-14 N/A 6.5 MEDIUM
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b03b5.
CVE-2022-35048 1 Otfcc Project 1 Otfcc 2022-10-14 N/A 6.5 MEDIUM
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0b2c.
CVE-2022-35053 1 Otfcc Project 1 Otfcc 2022-10-14 N/A 6.5 MEDIUM
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x61731f.