CVE-2022-21546 – Dell SBC Null Data Buffer Access Crash Vulnerability (Denial of Service)

May 2, 2025

CVE ID : CVE-2022-21546

Published : May 2, 2025, 10:15 p.m. | 1 hour, 15 minutes ago

Description : In newer version of the SBC specs, we have a NDOB bit that indicates there is no data buffer that gets written out. If this bit is set using commands like “sg_write_same –ndob” we will crash in target_core_iblock/file’s execute_write_same handlers when we go to access the se_cmd->t_data_sg because its NULL. CVSS 3.1 Base Score 7.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H).

Severity: 7.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-55069 – FFmpeg Null Pointer Dereference in iamf_read_header

Next Article CVE-2025-4218 – Handrew BrowserPilot GPTSeleniumAgent Code Injection Vulnerability

Highlights

CVE-2025-5789 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

June 6, 2025

CVE ID : CVE-2025-5789

Published : June 6, 2025, 6:15 p.m. | 1 hour, 33 minutes ago

Description : A vulnerability classified as critical has been found in TOTOLINK X15 1.0.0-B20230714.1105. This affects an unknown part of the file /boafrm/formPortFw of the component HTTP POST Request Handler. The manipulation of the argument service_type leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

UX Job Interview Helpers

.NET Aspire’s CLI reaches general availability in 9.4 release

15 Essential Skills to Look for When Hiring Node.js Developers for Enterprise Projects (2025-2026)

African training program creates developers with cloud-native skills

Why I’ll keep the Samsung Z Fold 7 over the Pixel 10 Pro Fold – especially if these rumors are true

You may soon get Starlink internet for a much lower ‘Community’ price – here’s how

uBlock Origin Lite has finally arrived for Safari – with one important caveat

Perplexity says Cloudflare’s accusations of ‘stealth’ AI scraping are based on embarrassing errors

Send Notifications in Laravel with Firebase Cloud Messaging and Notifire

Send Notifications in Laravel with Firebase Cloud Messaging and Notifire

Simplified Batch Job Creation with Laravel’s Enhanced Artisan Command

Send Notifications in Laravel with Firebase Cloud Messaging and Notifire

This comfy mesh office chair I’ve been testing costs less than $400 — but there’s a worthy alternative that’s far more affordable

This comfy mesh office chair I’ve been testing costs less than $400 — but there’s a worthy alternative that’s far more affordable

How to get started with Markdown in the Notepad app for Windows 11

Microsoft Account Lockout: LibreOffice Developer’s Week-Long Nightmare Raises Concerns

CVE-2022-21546 – Dell SBC Null Data Buffer Access Crash Vulnerability (Denial of Service)

SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported

Think Before You Download: UAE Cybersecurity Council Issues Warning on Unverified Apps

Oblivion Remastered loses the most helpful settings on PC thanks to a botched Game Pass update

Repeat Strings Efficiently with Laravel’s Str::repeat Method

New generative media models and tools, built with and for creators

Google Patches Quick Share Vulnerability Enabling Silent File Transfers Without Consent

CVE-2025-5789 – TOTOLINK X15 HTTP POST Request Handler Buffer Overflow Vulnerability

Microsoft Excel for Mac now allows viewing mutiple worksheets side by side

How to Create Telemetry Dashboards for Adobe Express Add-ons

CVE-2025-20223 – Cisco Catalyst Center HTTP Request Access Control Bypass

CVE-2022-21546 – Dell SBC Null Data Buffer Access Crash Vulnerability (Denial of Service)

Related Posts