Memory corruption in Kernel while handling GPU operations.

Memory corruption while allocating memory for graphics.

Memory corruption when there is failed unmap operation in GPU.

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.

Transient DOS while decoding message of size that exceeds the available system memory.

Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown extensions.

Memory corruption in HLOS while running kernel address sanitizers (syzkaller) on tmecom with DEBUG_FS enabled.

Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command.

Transient DOS while processing DL NAS TRANSPORT message with payload length 0.

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification.

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR.

Memory corruption while processing finish_sign command to pass a rsp buffer.

Memory corruption in SPS Application while requesting for public key in sorter TA.

A vulnerability classified as problematic was found in Zebra ZTC GK420d 1.0. This vulnerability affects unknown code of the file /settings of the component Alert Setup Page. The manipulation of the argument Address leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-258868. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Missing Authorization vulnerability in Averta Shortcodes and extra features for Phlox theme auxin-elements.This issue affects Shortcodes and extra features for Phlox theme: from n/a through 2.15.7.

A vulnerability classified as problematic has been found in fridgecow smartalarm 1.8.1 on Android. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-258867.

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /include/authrp.php.

netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php.