CVE-2023-4232
- EPSS 0.95%
- Veröffentlicht 17.04.2024 23:15:06
- Zuletzt bearbeitet 04.11.2025 19:16:13
A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_status_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malic...
CVE-2024-31585
- EPSS 0.28%
- Veröffentlicht 17.04.2024 19:15:08
- Zuletzt bearbeitet 09.06.2025 16:15:34
FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avf_showspectrum.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2024-31031
- EPSS 0.87%
- Veröffentlicht 17.04.2024 19:15:07
- Zuletzt bearbeitet 04.11.2025 22:16:00
An issue in `coap_pdu.c` in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow.
CVE-2024-31581
- EPSS 1.1%
- Veröffentlicht 17.04.2024 19:15:07
- Zuletzt bearbeitet 04.11.2025 18:16:19
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application.
CVE-2024-31582
- EPSS 0.35%
- Veröffentlicht 17.04.2024 19:15:07
- Zuletzt bearbeitet 04.11.2025 18:16:19
FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the draw_block_rectangle function of libavfilter/vf_codecview.c. This vulnerability allows attackers to cause undefined behavior or a Denial of Service (DoS) via cr...
CVE-2024-3914
- EPSS 1.01%
- Veröffentlicht 17.04.2024 18:15:16
- Zuletzt bearbeitet 19.12.2024 19:03:05
Use after free in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-31578
- EPSS 0.97%
- Veröffentlicht 17.04.2024 14:15:08
- Zuletzt bearbeitet 04.11.2025 18:16:19
FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.
CVE-2024-3832
- EPSS 1.23%
- Veröffentlicht 17.04.2024 08:15:10
- Zuletzt bearbeitet 14.03.2025 01:15:40
Object corruption in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-3833
- EPSS 14.96%
- Veröffentlicht 17.04.2024 08:15:10
- Zuletzt bearbeitet 19.12.2024 14:46:01
Object corruption in WebAssembly in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-3840
- EPSS 0.75%
- Veröffentlicht 17.04.2024 08:15:10
- Zuletzt bearbeitet 19.12.2024 14:35:08
Insufficient policy enforcement in Site Isolation in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)