Search Results (38 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2006-0622 1 Qnx 1 Rtos 2026-04-16 N/A
QNX Neutrino RTOS 6.3.0 allows local users to cause a denial of service (hang) by supplying a "break *0xb032d59f" command to gdb.
CVE-2000-0250 1 Qnx 1 Qnx 2026-04-16 N/A
The crypt function in QNX uses weak encryption, which allows local users to decrypt passwords.
CVE-2000-0904 1 Qnx 1 Voyager 2026-04-16 N/A
Voyager web server 2.01B in the demo disks for QNX 405 stores sensitive web client information in the .photon directory in the web document root, which allows remote attackers to obtain that information.
CVE-2001-0624 1 Qnx 1 Qnx 2026-04-16 N/A
QNX 2.4 allows a local user to read arbitrary files by directly accessing the mount point for the FAT disk partition, e.g. /fs-dos.
CVE-2002-2041 1 Qnx 1 Rtos 2026-04-16 N/A
Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer.
CVE-2006-0619 1 Qnx 1 Rtos 2026-04-16 N/A
Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library.
CVE-2006-0620 1 Qnx 1 Rtos 2026-04-16 N/A
Race condition in phfont in QNX Neutrino RTOS 6.2.1 allows local users to execute arbitrary code via unspecified manipulations of the PHFONT and PHOTON2_PATH environment variables.
CVE-2002-2042 1 Qnx 1 Rtos 2026-04-16 N/A
ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.
CVE-2005-1528 1 Qnx 1 Rtos 2026-04-16 N/A
Untrusted search path vulnerability in the crttrap command in QNX Neutrino RTOS 6.2.1 allows local users to load arbitrary libraries via a LD_LIBRARY_PATH environment variable that references a malicious library.
CVE-2005-3928 1 Qnx 1 Rtos 2026-04-16 N/A
Buffer overflow in phgrafx in QNX 6.2.1 and 6.3.0 allows local users to execute arbitrary code via a long command line argument.
CVE-2004-1390 1 Qnx 2 Rtos, Rtp 2026-04-16 N/A
Multiple buffer overflows in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allow remote attackers to execute arbitrary code via a long argument to the (1) -F, (2) name, (3) en, (4) upscript, (5) downscript, (6) retries, (7) timeout, (8) scriptdetach, (9) noscript, (10) nodetach, (11) remote_mac, or (12) local_mac flags.
CVE-2025-27077 2 Qnx, Qualcomm 56 Qnx, Qam8255p, Qam8255p Firmware and 53 more 2026-02-26 7.8 High
Memory corruption while processing message in guest VM.
CVE-2025-47315 2 Qnx, Qualcomm 56 Qnx, Qam8255p, Qam8255p Firmware and 53 more 2026-02-26 7.8 High
Memory corruption while handling repeated memory unmap requests from guest VM.
CVE-2025-47347 2 Qnx, Qualcomm 76 Qnx, Qam8255p, Qam8255p Firmware and 73 more 2026-02-26 7.8 High
Memory corruption while processing control commands in the virtual memory management interface.
CVE-2025-47360 2 Qnx, Qualcomm 72 Qnx, Qam8255p, Qam8255p Firmware and 69 more 2026-02-26 7.8 High
Memory corruption while processing client message during device management.
CVE-2025-47361 2 Qnx, Qualcomm 58 Qnx, Qam8255p, Qam8255p Firmware and 55 more 2026-02-26 7.8 High
Memory corruption when triggering a subsystem crash with an out-of-range identifier.
CVE-2025-47362 2 Qnx, Qualcomm 78 Qnx, Msm8996au, Msm8996au Firmware and 75 more 2025-11-05 6.1 Medium
Information disclosure while processing message from client with invalid payload.
CVE-2011-4060 1 Qnx 1 Neutrino Rtos 2025-04-11 N/A
The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack.