ReportizFlow
Filtered by vendor Renderdoc
Subscriptions
Filtered by product Renderdoc
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-33865 | 1 Renderdoc | 1 Renderdoc | 2024-11-21 | 7.8 High |
| RenderDoc before 1.27 allows local privilege escalation via a symlink attack. It relies on the /tmp/RenderDoc directory regardless of ownership. | ||||
| CVE-2023-33864 | 1 Renderdoc | 1 Renderdoc | 2024-11-21 | 9.8 Critical |
| StreamReader::ReadFromExternal in RenderDoc before 1.27 allows an Integer Overflow with a resultant Buffer Overflow. It uses uint32_t(m_BufferSize-m_InputSize) even though m_InputSize can exceed m_BufferSize. | ||||
| CVE-2023-33863 | 1 Renderdoc | 1 Renderdoc | 2024-11-21 | 9.8 Critical |
| SerialiseValue in RenderDoc before 1.27 allows an Integer Overflow with a resultant Buffer Overflow. 0xffffffff is sign-extended to 0xffffffffffffffff (SIZE_MAX) and then there is an attempt to add 1. | ||||
Page 1 of 1.