CVE-2026-46244 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync In…
CVE-2017-20211: UCanCode E-XD++ Visualization Enterprise Suite contains an untrusted pointer dereference vulnerability via the TKDRAWCAD.TKDrawCADCtrl.1…
CVE-2023-20187 — CVSS 8.6 (high): A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation…
CVE-2025-0467 — CVSS 8.2 (high): Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's…
CVE-2024-42386 — CVSS 8.2 (high): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet…
CVE-2022-32142 — CVSS 8.1 (high): Multiple CODESYS Products are prone to a out-of bounds read or write access. A low privileged remote attacker may craft a request with…
CVE-2025-25180 — CVSS 7.8 (high): Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical…
CVE-2024-45557 — CVSS 7.8 (high): Memory corruption can occur when TME processes addresses from TZ and MPSS requests without proper validation.
CVE-2024-43060 — CVSS 7.8 (high): Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP.
CVE-2024-52939 — CVSS 7.8 (high): Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to trigger a write data outside the…
CVE-2024-47900 — CVSS 7.8 (high): Software installed and run as a non-privileged user may conduct improper GPU system calls to access OOB kernel memory.
CVE-2024-52938 — CVSS 7.8 (high): Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to subvert reconstruction activities…
CVE-2024-1013 — CVSS 7.8 (high): An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes…
CVE-2020-6112 — CVSS 7.8 (high): An exploitable code execution vulnerability exists in the JPEG2000 Stripe Decoding functionality of Nitro Software, Inc.’s Nitro Pro…
CVE-2026-21734 — CVSS 7.7 (high): A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a write out-of-bounds write crash…
CVE-2025-11232 — CVSS 7.5 (high): To trigger the issue, three configuration parameters must have specific settings: "hostname-char-set" must be left at the default setting…
CVE-2024-6603 — CVSS 7.4 (high): In an out-of-memory scenario an allocation could fail but free would have been called on the pointer afterwards leading to memory…
CVE-2024-12577 — CVSS 7.3 (high): Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's…
CVE-2024-47895 — CVSS 7.1 (high): Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's…
CVE-2024-47894 — CVSS 7.1 (high): Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's…
CVE-2025-46806: A Use of Out-of-range Pointer Offset vulnerability in sslh leads to denial of service on some architectures.This issue affects sslh before…
CVE-2025-33215 — CVSS 6.8 (medium): NVIDIA SNAP-4 Container contains a vulnerability in the VIRTIO-BLK component where a malicious guest VM may cause use of out-of-range…
CVE-2026-23764: VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato (versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier…
CVE-2024-52937 — CVSS 6.7 (medium): Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's…
CVE-2024-33036 — CVSS 6.7 (medium): Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing…
CVE-2024-23377 — CVSS 6.7 (medium): Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system…
CVE-2025-54152 — CVSS 6.5 (medium): A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account…
CVE-2024-47893 — CVSS 6.5 (medium): Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to read and/or write data outside…
CVE-2026-20022 — CVSS 6.1 (medium): A vulnerability in the OSPF protocol of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an unauthenticated…
CVE-2022-43665 — CVSS 5.5 (medium): A denial of service vulnerability exists in the malware scan functionality of ESTsoft Alyac 2.5.8.645. A specially-crafted PE file can lead…
CVE-2024-42389 — CVSS 5.3 (medium): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet…
CVE-2024-42388 — CVSS 5.3 (medium): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet…
CVE-2024-42387 — CVSS 5.3 (medium): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet…
CVE-2024-52936 — CVSS 4.4 (medium): Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to write data outside the Guest's…
CVE-2026-34193 — CVSS 4.3 (medium): Kernel software installed and running inside a Guest/Host VM may post improper commands to the GPU Firmware to trigger a write of data…
CVE-2024-42391 — CVSS 4.3 (medium): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet…
CVE-2024-42390 — CVSS 4.3 (medium): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows an attacker to send an unexpected TLS packet…
CVE-2024-42383 — CVSS 4.2 (medium): Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to write a NULL byte value beyond the memory…
CVE-2024-52935 — CVSS 4.1 (medium): Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's…