CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 0CVE-2023-6693 – Qemu: virtio-net: stack buffer overflow in virtio_net_flush_tx()
https://notcve.org/view.php?id=CVE-2023-6693
02 Jan 2024 — A stack based buffer overflow was found in the virtio-net device of QEMU. ... Fixed buffer overflow via invalid SR/IOV NumVFs value. Fixed integer overflow results in buffer overflow via SCSI command. Fixed stack buffer overflow in virtio_net_flush_tx. Fixed out-of-bounds read in pvrdma_ring_next_elem_read. • https://access.redhat.com/errata/RHSA-2024:2962 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 294EXPL: 0CVE-2023-33038 – Integer Overflow or Wraparound in Radio Interface Layer
https://notcve.org/view.php?id=CVE-2023-33038
02 Jan 2024 — Memory corruption while receiving a message in Bus Socket Transport Server. Corrupción de la memoria al recibir un mensaje en Bus Socket Transport Server. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 240EXPL: 0CVE-2023-33032 – Integer Overflow or Wraparound in TZ Secure OS
https://notcve.org/view.php?id=CVE-2023-33032
02 Jan 2024 — Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. Corrupción de la memoria en TZ Secure OS al solicitar una asignación de memoria de la región TA. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 23EXPL: 0CVE-2023-32881
https://notcve.org/view.php?id=CVE-2023-32881
02 Jan 2024 — In battery, there is a possible information disclosure due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/January-2024 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.0EPSS: 0%CPEs: 6EXPL: 2CVE-2023-6531 – Kernel: gc's deletion of an skb races with unix_stream_read_generic() leading to uaf
https://notcve.org/view.php?id=CVE-2023-6531
02 Jan 2024 — Fixed an out-of-bounds read with openvswitch, when fragmenting IPv4 packets. Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules. • https://packetstorm.news/files/id/176533 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-51714 – qt: incorrect integer overflow check
https://notcve.org/view.php?id=CVE-2023-51714
24 Dec 2023 — An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3.x through 6.5.x before 6.5.4, and 6.6.x before 6.6.2. network/access/http2/hpacktable.cpp has an incorrect HPack integer overflow check. ... An integer overflow vulnerability was found in Qt. An incorrect HPack integer overflow check can lead to denial of service. • https://codereview.qt-project.org/c/qt/qtbase/+/524864 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-24609
https://notcve.org/view.php?id=CVE-2023-24609
22 Dec 2023 — Matrix SSL 4.x through 4.6.0 and Rambus TLS Toolkit have a length-subtraction integer overflow for Client Hello Pre-Shared Key extension parsing in the TLS 1.3 server. • https://www.rambus.com/security/software-protocols/tls-toolkit • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-48298 – Integer underflow leading to stack overflow in FPC codec decompression
https://notcve.org/view.php?id=CVE-2023-48298
21 Dec 2023 — This vulnerability is an integer underflow resulting in crash due to stack buffer overflow in decompression of FPC codec. • https://github.com/ClickHouse/ClickHouse/pull/56795 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 1CVE-2023-6546 – Kernel: gsm multiplexing race condition leads to privilege escalation
https://notcve.org/view.php?id=CVE-2023-6546
21 Dec 2023 — Fixed int overflow for stack access size. ... Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules. • https://github.com/harithlab/CVE-2023-6546 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-43826 – Apache Guacamole: Integer overflow in handling of VNC image buffers
https://notcve.org/view.php?id=CVE-2023-43826
19 Dec 2023 — Apache Guacamole 1.5.3 and older do not consistently ensure that values received from a VNC server will not result in integer overflow. • http://www.openwall.com/lists/oss-security/2023/12/19/4 • CWE-190: Integer Overflow or Wraparound •