641
|
7.8 |
HIGH
Local
|
autodesk
|
revit
|
A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Stack-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, o…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7994
|
2024-10-22 03:35 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
642
|
5.4 |
MEDIUM
Network
|
grafana
|
grafana
|
A user changing their email after signing up and verifying it can change it without verification in profile settings.
The configuration option "verify_email_enabled" will only validate email only on…
Update
|
CWE-863
Incorrect Authorization
|
CVE-2023-6152
|
2024-10-22 03:35 |
2024-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
643
|
6.7 |
MEDIUM
Local
|
linuxfoundation google openwrt
|
yocto android openwrt
|
In gnss service, there is a possible out of bounds write due to improper input validation. This could lead to local esclation of privileges with System execution privileges needed. User interaction i…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32812
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
644
|
6.7 |
MEDIUM
Local
|
linuxfoundation mediatek google openwrt
|
yocto iot_yocto android openwrt
|
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32806
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
645
|
6.5 |
MEDIUM
Local
|
linuxfoundation mediatek google linux
|
yocto iot_yocto android linux_kernel
|
In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interactio…
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2023-20848
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
646
|
6.5 |
MEDIUM
Local
|
linuxfoundation mediatek google linux
|
yocto iot_yocto android linux_kernel
|
In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interacti…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-20842
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
647
|
6.5 |
MEDIUM
Local
|
linuxfoundation mediatek google linux
|
yocto iot_yocto android linux_kernel
|
In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-20841
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
648
|
6.5 |
MEDIUM
Local
|
linuxfoundation mediatek google linux
|
yocto iot_yocto android linux_kernel
|
In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User inter…
Update
|
CWE-125 CWE-787
Out-of-bounds Read Out-of-bounds Write
|
CVE-2023-20840
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
649
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In seninf, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not nee…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2023-20837
|
2024-10-22 03:35 |
2023-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
650
|
7.8 |
HIGH
Local
|
autodesk
|
revit
|
A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or exec…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-7993
|
2024-10-22 03:27 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|