CVE-2022-25479

MEDIUM Year: 2022
CVSS v3 Score
6.1
Medium
Weakness Type
CWE-401
View all →

Vulnerability Description

Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows for the leakage of kernel memory from both the stack and the heap.

Related Vulnerabilities

CVE-2016-10155

MEDIUM
CVSS:6.0(Medium)

Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large ...

CWE-4012016

CVE-2022-35894

MEDIUM
CVSS:6.0(Medium)

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. The SMI handler for the FwBlockServiceSmm driver uses an untrusted pointer as the location to copy data to an attacker-specifie...

CWE-4012022

CVE-2021-30002

MEDIUM
CVSS:6.2(Medium)

An issue was discovered in the Linux kernel before 5.11.3 when a webcam device exists. video_usercopy in drivers/media/v4l2-core/v4l2-ioctl.c has a memory leak for large arguments, aka CID-fb18802a338...

CWE-4012021

CVE-2024-3860

MEDIUM
CVSS:6.2(Medium)

An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This vulnerability affects Firefox < 125.

CWE-4012024

CVE-2024-39490

MEDIUM
CVSS:6.2(Medium)

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix missing sk_buff release in seg6_input_core The seg6_input() function is responsible for adding the SRH into a packet, ...

CWE-4012024

CVE-2017-15094

MEDIUM
CVSS:5.9(Medium)

An issue has been found in the DNSSEC parsing code of PowerDNS Recursor from 4.0.0 up to and including 4.0.6 leading to a memory leak when parsing specially crafted DNSSEC ECDSA keys. These keys are o...

CWE-4012017