Total
12074 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-25697 | 1 Qualcomm | 32 Sd429, Sd429 Firmware, Sd 8 Gen1 5g Firmware and 29 more | 2025-04-22 | N/A | 8.4 HIGH |
| Memory corruption in i2c buses due to improper input validation while reading address configuration from i2c driver in Snapdragon Mobile, Snapdragon Wearables | |||||
| CVE-2022-45693 | 2 Debian, Jettison Project | 2 Debian Linux, Jettison | 2025-04-22 | N/A | 7.5 HIGH |
| Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string. | |||||
| CVE-2022-45690 | 1 Hutool | 1 Hutool | 2025-04-22 | N/A | 7.5 HIGH |
| A stack overflow in the org.json.JSONTokener.nextValue::JSONTokener.java component of hutool-json v5.8.10 allows attackers to cause a Denial of Service (DoS) via crafted JSON or XML data. | |||||
| CVE-2022-45689 | 1 Hutool | 1 Hutool | 2025-04-22 | N/A | 7.5 HIGH |
| hutool-json v5.8.10 was discovered to contain an out of memory error. | |||||
| CVE-2022-42808 | 1 Apple | 5 Ipados, Iphone Os, Macos and 2 more | 2025-04-22 | N/A | 9.8 CRITICAL |
| An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 16.1, iOS 16.1 and iPadOS 16, macOS Ventura 13, watchOS 9.1. A remote user may be able to cause kernel code execution. | |||||
| CVE-2022-20469 | 1 Google | 1 Android | 2025-04-22 | N/A | 8.8 HIGH |
| In avct_lcb_msg_asmbl of avct_lcb_act.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-230867224 | |||||
| CVE-2024-49738 | 1 Google | 1 Android | 2025-04-22 | N/A | 7.8 HIGH |
| In writeInplace of Parcel.cpp, there is a possible out of bounds write. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-43096 | 1 Google | 1 Android | 2025-04-22 | N/A | 8.8 HIGH |
| In build_read_multi_rsp of gatt_sr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-49749 | 1 Google | 1 Android | 2025-04-22 | N/A | 8.8 HIGH |
| In DGifSlurp of dgif_lib.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-49748 | 1 Google | 1 Android | 2025-04-22 | N/A | 9.8 CRITICAL |
| In gatts_process_primary_service_req of gatt_sr.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2024-49745 | 1 Google | 1 Android | 2025-04-22 | N/A | 7.8 HIGH |
| In growData of Parcel.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. | |||||
| CVE-2022-44898 | 1 Asus | 1 Aura Sync | 2025-04-22 | N/A | 7.8 HIGH |
| The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service (DoS) or escalate privileges via crafted IOCTL requests. | |||||
| CVE-2024-20130 | 2 Google, Mediatek | 30 Android, Mt6739, Mt6761 and 27 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09193374; Issue ID: MSV-1982. | |||||
| CVE-2024-20131 | 1 Mediatek | 33 Mt2737, Mt2739, Mt6789 and 30 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1873. | |||||
| CVE-2024-20133 | 1 Mediatek | 12 Mt6879, Mt6886, Mt6895 and 9 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1871. | |||||
| CVE-2024-20134 | 2 Google, Mediatek | 14 Android, Mt6835, Mt6878 and 11 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09154589; Issue ID: MSV-1866. | |||||
| CVE-2024-20135 | 2 Google, Mediatek | 13 Android, Mt6768, Mt6781 and 10 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In soundtrigger, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09142526; Issue ID: MSV-1841. | |||||
| CVE-2024-20119 | 2 Google, Mediatek | 20 Android, Mt6739, Mt6761 and 17 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In mms, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09062301; Issue ID: MSV-1620. | |||||
| CVE-2024-20120 | 2 Google, Mediatek | 29 Android, Mt6765, Mt6768 and 26 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1575. | |||||
| CVE-2024-20121 | 2 Google, Mediatek | 29 Android, Mt6765, Mt6768 and 26 more | 2025-04-22 | N/A | 6.7 MEDIUM |
| In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1574. | |||||