Total
311 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-26664 | 2025-04-09 | N/A | 6.5 MEDIUM | ||
| Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. | |||||
| CVE-2023-38144 | 1 Microsoft | 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more | 2025-04-08 | N/A | 7.8 HIGH |
| Windows Common Log File System Driver Elevation of Privilege Vulnerability | |||||
| CVE-2025-32052 | 2025-04-07 | N/A | 6.5 MEDIUM | ||
| A flaw was found in libsoup. A vulnerability in the sniff_unknown() function may lead to heap buffer over-read. | |||||
| CVE-2025-32053 | 2025-04-07 | N/A | 6.5 MEDIUM | ||
| A flaw was found in libsoup. A vulnerability in sniff_feed_or_html() and skip_insignificant_space() functions may lead to a heap buffer over-read. | |||||
| CVE-2024-45552 | 2025-04-07 | N/A | 8.2 HIGH | ||
| Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards. | |||||
| CVE-2025-21429 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request. | |||||
| CVE-2025-21421 | 2025-04-07 | N/A | 7.8 HIGH | ||
| Memory corruption while processing escape code in API. | |||||
| CVE-2025-21430 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session. | |||||
| CVE-2025-21434 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS may occur while parsing EHT operation IE or EHT capability IE. | |||||
| CVE-2025-21435 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS may occur while parsing extended IE in beacon. | |||||
| CVE-2025-21448 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Transient DOS may occur while parsing SSID in action frames. | |||||
| CVE-2025-21428 | 2025-04-07 | N/A | 7.5 HIGH | ||
| Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session. | |||||
| CVE-2023-0396 | 1 Zephyrproject | 1 Zephyr | 2025-04-03 | N/A | 6.8 MEDIUM |
| A malicious / defective bluetooth controller can cause buffer overreads in the most functions that process HCI command responses. | |||||
| CVE-2023-6936 | 1 Wolfssl | 1 Wolfssl | 2025-03-26 | N/A | 5.3 MEDIUM |
| In wolfSSL prior to 5.6.6, if callback functions are enabled (via the WOLFSSL_CALLBACKS flag), then a malicious TLS client or network attacker can trigger a buffer over-read on the heap of 5 bytes (WOLFSSL_CALLBACKS is only intended for debugging). | |||||
| CVE-2025-24992 | 2025-03-11 | N/A | 5.5 MEDIUM | ||
| Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally. | |||||
| CVE-2024-43056 | 2025-03-03 | N/A | 5.5 MEDIUM | ||
| Transient DOS during hypervisor virtual I/O operation in a virtual machine. | |||||
| CVE-2024-57970 | 2025-02-18 | N/A | 4.0 MEDIUM | ||
| libarchive through 3.7.7 has a heap-based buffer over-read in header_gnu_longlink in archive_read_support_format_tar.c via a TAR archive because it mishandles truncation in the middle of a GNU long linkname. | |||||
| CVE-2024-12011 | 2025-02-13 | N/A | 7.6 HIGH | ||
| A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The information disclosure can be triggered by leveraging a memory leak affecting the web server. A remote unauthenticated attacker can exploit this vulnerability in order to leak valid authentication tokens from the process memory associated to users currently logged to the system and bypass the authentication mechanism. | |||||
| CVE-2023-39540 | 1 Weston-embedded | 1 Uc-tcp-ip | 2025-02-12 | N/A | 5.9 MEDIUM |
| A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv4 ICMP packet. | |||||
| CVE-2023-39541 | 1 Weston-embedded | 1 Uc-tcp-ip | 2025-02-12 | N/A | 5.9 MEDIUM |
| A denial of service vulnerability exists in the ICMP and ICMPv6 parsing functionality of Weston Embedded uC-TCP-IP v3.06.01. A specially crafted network packet can lead to an out-of-bounds read. An attacker can send a malicious packet to trigger this vulnerability.This vulnerability concerns a denial of service within the parsing an IPv6 ICMPv6 packet. | |||||