CVSS: 7.5EPSS: 10%CPEs: 4EXPL: 0CVE-2020-36228 – Apple Security Advisory 2021-05-25-4
https://notcve.org/view.php?id=CVE-2020-36228
25 Jan 2021 — An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service. • http://seclists.org/fulldisclosure/2021/May/64 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 506EXPL: 0CVE-2020-3691
https://notcve.org/view.php?id=CVE-2020-3691
21 Jan 2021 — Possible out of bound memory access in audio due to integer underflow while processing modified contents in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un posible acceso a la memoria fuera del límite en el audio debido a un flujo insuficiente de enteros mientras se procesan contenidos modificados ... • https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 9.8EPSS: 0%CPEs: 369EXPL: 0CVE-2020-11216
https://notcve.org/view.php?id=CVE-2020-11216
21 Jan 2021 — Buffer over read can happen in video driver when playing clip with atomsize having value UINT32_MAX in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una lectura excesiva del búfer puede ocurrir en el controlador de video cuando se reproduce un clip con un tamaño de átomo que tiene el valor UINT32_MAX en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivit... • https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 370EXPL: 0CVE-2020-11197
https://notcve.org/view.php?id=CVE-2020-11197
21 Jan 2021 — Possible integer overflow can occur when stream info update is called when total number of streams detected are zero while parsing TS clip with invalid data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Un posible desbordamiento de enteros puede ocurrir cuando una actualización de la información de la transmisión es llamada cuando el número total de transmisi... • https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 0%CPEs: 286EXPL: 0CVE-2020-11167
https://notcve.org/view.php?id=CVE-2020-11167
21 Jan 2021 — Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends more data than expected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Una corrupción de la memoria mientras se calcula la longitud del paquete L2CAP en la lógica de reensamblaje cuando el control remoto envía más datos de lo esperado en los productos Snapdragon Auto, Snapdragon Co... • https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 491EXPL: 0CVE-2020-11137
https://notcve.org/view.php?id=CVE-2020-11137
21 Jan 2021 — Integer multiplication overflow resulting in lower buffer size allocation than expected causes memory access out of bounds resulting in possible device instability in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Un desbordamiento de la multiplicación de enteros resultando en una asignación de tamaño del b... • https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.3EPSS: 0%CPEs: 14EXPL: 0CVE-2021-2007 – mysql: C API unspecified vulnerability (CPU Jan 2021)
https://notcve.org/view.php?id=CVE-2021-2007
20 Jan 2021 — Issues addressed include bypass, denial of service, integer overflow, man-in-the-middle, and memory leak vulnerabilities. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K •
CVSS: 8.3EPSS: 24%CPEs: 5EXPL: 0CVE-2020-25681 – dnsmasq: heap-based buffer overflow in sort_rrset() when DNSSEC is enabled
https://notcve.org/view.php?id=CVE-2020-25681
19 Jan 2021 — Issues addressed include bypass, denial of service, integer overflow, man-in-the-middle, and memory leak vulnerabilities. • https://bugzilla.redhat.com/show_bug.cgi?id=1881875 • CWE-122: Heap-based Buffer Overflow •
CVSS: 9.8EPSS: 2%CPEs: 15EXPL: 1CVE-2021-3177 – python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c
https://notcve.org/view.php?id=CVE-2021-3177
19 Jan 2021 — Issues addressed include denial of service and integer overflow vulnerabilities. • https://bugs.python.org/issue42938 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.3EPSS: 19%CPEs: 5EXPL: 0CVE-2020-25682 – dnsmasq: buffer overflow in extract_name() due to missing length check when DNSSEC is enabled
https://notcve.org/view.php?id=CVE-2020-25682
19 Jan 2021 — Issues addressed include bypass, denial of service, integer overflow, man-in-the-middle, and memory leak vulnerabilities. • https://bugzilla.redhat.com/show_bug.cgi?id=1882014 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •