CVE-2023-34366
https://notcve.org/view.php?id=CVE-2023-34366
A specially crafted document can cause memory corruption, resulting in arbitrary code execution. • https://jvn.jp/en/jp/JVN28846531/index.html https://talosintelligence.com/vulnerability_reports/TALOS-2023-1758 • CWE-416: Use After Free •
CVE-2023-38127
https://notcve.org/view.php?id=CVE-2023-38127
A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. • https://jvn.jp/en/jp/JVN28846531/index.html https://talosintelligence.com/vulnerability_reports/TALOS-2023-1808 • CWE-190: Integer Overflow or Wraparound •
CVE-2023-38128
https://notcve.org/view.php?id=CVE-2023-38128
A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. • https://jvn.jp/en/jp/JVN28846531/index.html https://talosintelligence.com/vulnerability_reports/TALOS-2023-1809 https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1809 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2023-35126
https://notcve.org/view.php?id=CVE-2023-35126
A specially crafted document can cause memory corruption, which can lead to arbitrary code execution. • https://jvn.jp/en/jp/JVN28846531/index.html https://talosintelligence.com/vulnerability_reports/TALOS-2023-1825 https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1825 • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVE-2022-25334 – Stack overflow on SK_LOAD signature length field in Texas Instruments OMAP L138
https://notcve.org/view.php?id=CVE-2022-25334
This can be leveraged to obtain arbitrary code execution in secure supervisor context by overwriting a SHA256 function pointer in the secure kernel data area when loading a forged, unsigned SK_LOAD module encrypted with the CEK (obtainable through CVE-2022-25332). • https://tetraburst.com • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •