CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2021-25846
https://notcve.org/view.php?id=CVE-2021-25846
10 May 2021 — Improper validation of the ChassisID TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet. Una comprobación inapropiada de ChassisID TLV en el archivo userdisk/vport_lldpd en Moxa Camera VPort 06EC-2V Series, versión 1.1, permite a atacantes causar una denegación de servicio debido a un número negativo pasado a la función memcpy por medio de un paquete lldp ... • https://www.moxa.com/en • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2021-22677
https://notcve.org/view.php?id=CVE-2021-22677
07 May 2021 — An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). • https://us-cert.cisa.gov/ics/advisories/icsa-21-119-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 2%CPEs: 7EXPL: 0CVE-2021-22671
https://notcve.org/view.php?id=CVE-2021-22671
07 May 2021 — Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). • https://us-cert.cisa.gov/ics/advisories/icsa-21-119-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 2%CPEs: 7EXPL: 0CVE-2021-22679
https://notcve.org/view.php?id=CVE-2021-22679
07 May 2021 — The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). • https://us-cert.cisa.gov/ics/advisories/icsa-21-119-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 0CVE-2021-22675
https://notcve.org/view.php?id=CVE-2021-22675
07 May 2021 — The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may allow an attacker to remotely execute code on SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). • https://us-cert.cisa.gov/ics/advisories/icsa-21-119-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 830EXPL: 0CVE-2021-1895
https://notcve.org/view.php?id=CVE-2021-1895
07 May 2021 — Possible integer overflow due to improper length check while flashing an image in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Un posible desbordamiento de enteros debido a una comprobación de longitud inapropiada mientras se muestra una imagen en los productos Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 0%CPEs: 818EXPL: 0CVE-2020-11279
https://notcve.org/view.php?id=CVE-2020-11279
07 May 2021 — Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de la memoria durante el procesamiento de paquetes SDES diseñados debido a una comprobación inapropiada de longitud en los paquetes sdes recibidos en los productos Snapdragon Auto, Snapdra... • https://www.qualcomm.com/company/product-security/bulletins/may-2021-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2020-28020 – Gentoo Linux Security Advisory 202105-01
https://notcve.org/view.php?id=CVE-2020-28020
06 May 2021 — Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction. • http://www.openwall.com/lists/oss-security/2021/07/25/1 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-28009 – Debian Security Advisory 4912-1
https://notcve.org/view.php?id=CVE-2020-28009
06 May 2021 — Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. • https://www.exim.org/static/doc/security/CVE-2020-qualys/CVE-2020-28009-STDIN.txt • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 3CVE-2020-28469 – Regular Expression Denial of Service (ReDoS)
https://notcve.org/view.php?id=CVE-2020-28469
06 May 2021 — Issues addressed include code execution, cross site scripting, denial of service, integer overflow, and null pointer vulnerabilities. • https://github.com/gulpjs/glob-parent/blob/6ce8d11f2f1ed8e80a9526b1dc8cf3aa71f43474/index.js%23L9 • CWE-400: Uncontrolled Resource Consumption •