CVE-2017-11076

CRITICAL Year: 2017
CVSS v3 Score
9.8
Critical
Weakness Type
CWE-823
View all →

Vulnerability Description

On some hardware revisions where VP9 decoding is hardware-accelerated, the frame size is not programmed correctly into the decoder hardware which can lead to an invalid memory access by the decoder.

Related Vulnerabilities

CVE-2023-22388

CRITICAL
CVSS:9.8(Critical)

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

CWE-8232023

CVE-2023-24855

CRITICAL
CVSS:9.8(Critical)

Memory corruption in Modem while processing security related configuration before AS Security Exchange.

CWE-8232023

CVE-2023-43534

CRITICAL
CVSS:9.8(Critical)

Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point.

CWE-8232023

CVE-2023-43553

CRITICAL
CVSS:9.8(Critical)

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.

CWE-8232023

CVE-2024-42383

CRITICAL
CVSS:9.8(Critical)

Use of Out-of-range Pointer Offset vulnerability in Cesanta Mongoose Web Server v7.14 allows to write a NULL byte value beyond the memory space dedicated for the hostname field.

CWE-8232024

CVE-2020-8904

CRITICAL
CVSS:9.6(Critical)

An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. As the ecall_restore function fails to validate the range of the output_len pointer, an at...

CWE-8232020