Common Vulnerabilities and Exposures (CVE)

CVE-2026-20438

Mar 30, 2026 11:29:44 UTC

In MAE, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch...

CVE-2026-20437

Mar 30, 2026 11:29:41 UTC

In MAE, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS104319...

CVE-2026-20436

Mar 30, 2026 11:29:38 UTC

In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed f...

CVE-2026-20435

Mar 30, 2026 11:29:36 UTC

In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. Use...

CVE-2026-20434

Mar 30, 2026 11:29:33 UTC

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privi...

CVE-2026-20430

Mar 30, 2026 11:29:30 UTC

In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

CVE-2026-20428

Mar 30, 2026 11:29:27 UTC

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitat...

CVE-2026-20427

Mar 30, 2026 11:29:25 UTC

In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for explo...

CVE-2026-20426

Mar 30, 2026 11:29:22 UTC

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitat...

CVE-2026-20425

Mar 30, 2026 11:29:20 UTC

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitat...

CVE-2026-2239

Mar 30, 2026 11:29:20 UTC

A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a specially crafted PSD (Photoshop Document) file. This occurs because the buffer allocated for a Pascal string is not p...

CVE-2026-20423

Mar 30, 2026 11:29:17 UTC

In wlan STA driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WC...

CVE-2026-20419

Mar 30, 2026 11:27:47 UTC

In wlan AP/STA firmware, there is a possible system becoming irresponsive due to an uncaught exception. This could lead to remote (proximal/adjacent) denial of service with no additional execution privileges needed. User interaction is not ...

CVE-2026-20418

Mar 30, 2026 11:27:35 UTC

In Thread, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: W...

CVE-2026-20417

Mar 30, 2026 11:27:32 UTC

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation...