7.8
CVE-2026-21371 - Buffer Over-read in WinBlast Driver
Memory Corruption when retrieving output buffer with insufficient size validation.
7.6
CVE-2026-21367 - Buffer Over-read in WLAN Firmware
Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.
7.1
CVE-2025-47400 - Buffer Over-read in Computer Vision
Cryptographic issue while copying data to a destination buffer without validating its size.
8.8
CVE-2025-47392 - Integer Overflow or Wraparound in GPS
Memory corruption when decoding corrupted satellite data files with invalid signature offsets.
7.8
CVE-2025-47391 - Stack-based Buffer Overflow in Camera Driver
Memory corruption while processing a frame request from user.
7.8
CVE-2025-47390 - Buffer Over-read in Camera
Memory corruption while preprocessing IOCTL request in JPEG driver.
7.8
CVE-2025-47389 - Buffer Copy Without Checking Size of Input in Automotive Platform
Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.
6.5
CVE-2025-47374 - Use After Free in Camera Driver
Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling.
8.5
CVE-2024-14032 - Twitch Studio LauncherHelper XPC Missing Authorization to Root File Write
Twitch Studio version 0.114.8 and prior contain a privilege escalation vulnerability in its privileged helper tool that allows local attackers to execute arbitrary code as root by exploiting an unprotected XPC service. Attackers can invoke the installFromPath:toPath:withReply: method to overwrite sโฆ
8.4
CVE-2026-34589 - OpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, the DWA lossy decoder constructs temporary per-component block pointers using signed 32-bit arithmetic. For โฆ