Lucene search

K

MT2713, MT2735, MT2737, MT6739, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6980, MT6983, MT6985, MT6990, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8185, MT8188, MT8195, MT8321, MT8362A, MT8365, MT8385, MT8395, MT8666, MT8667, MT8673, MT8675, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788, MT8789, MT8791, MT8791T, MT8797 Security Vulnerabilities

cve
cve

CVE-2022-21763

In telecom service, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07044717; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-07-06 02:15 PM
42
4
cve
cve

CVE-2022-21773

In TEEI driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641388; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
33
4
cve
cve

CVE-2022-21777

In Autoboot, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06713894; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
35
5
cve
cve

CVE-2022-21772

In TEEI driver, there is a possible type confusion due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493842; Issue ID:...

6.7CVSS

6.6AI Score

0.0004EPSS

2022-07-06 02:15 PM
37
5
cve
cve

CVE-2022-21767

In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784430; Issue ID:...

8.8CVSS

8.4AI Score

0.0005EPSS

2022-07-06 02:15 PM
58
5
cve
cve

CVE-2022-21768

In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784351; Issue ID:...

8.8CVSS

8.4AI Score

0.0005EPSS

2022-07-06 02:15 PM
60
5
cve
cve

CVE-2022-21764

In telecom service, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07044717; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-07-06 02:15 PM
48
4
cve
cve

CVE-2022-21780

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
37
5
cve
cve

CVE-2022-21776

In MDP, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545450; Issue ID:...

6.4CVSS

6.5AI Score

0.0004EPSS

2022-07-06 02:15 PM
39
5
cve
cve

CVE-2022-21782

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
47
5
cve
cve

CVE-2022-21766

In CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641673; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
36
2
cve
cve

CVE-2022-21775

In sched driver, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479032; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
35
4
cve
cve

CVE-2022-20082

In GPU, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07044730; Issue ID:...

7CVSS

7AI Score

0.0004EPSS

2022-07-06 02:15 PM
49
12
cve
cve

CVE-2022-20083

In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00803883; Issue ID:...

9.8CVSS

9.2AI Score

0.004EPSS

2022-07-06 02:15 PM
51
12
cve
cve

CVE-2022-21762

In apusys driver, there is a possible system crash due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06477946; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
53
3
cve
cve

CVE-2022-21758

In ccu, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06439600; Issue ID:...

6.7CVSS

6.8AI Score

0.0004EPSS

2022-06-06 06:15 PM
55
4
cve
cve

CVE-2022-21761

In apusys driver, there is a possible system crash due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479532; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
44
3
cve
cve

CVE-2022-21757

In WIFI Firmware, there is a possible system crash due to a missing count check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06468894; Issue ID:...

7.5CVSS

7.3AI Score

0.001EPSS

2022-06-06 06:15 PM
42
4
cve
cve

CVE-2022-21760

In apusys driver, there is a possible system crash due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479562; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
45
4
cve
cve

CVE-2022-21759

In power service, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06419106; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
59
4
cve
cve

CVE-2022-21756

In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535950; Issue ID:...

4.4CVSS

4.2AI Score

0.0004EPSS

2022-06-06 06:15 PM
36
3
cve
cve

CVE-2022-21749

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06511058; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-06-06 06:15 PM
56
2
cve
cve

CVE-2022-21748

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06511030; Issue ID:...

5.5CVSS

5AI Score

0.0004EPSS

2022-06-06 06:15 PM
40
2
cve
cve

CVE-2022-21745

In WIFI Firmware, there is a possible memory corruption due to a use after free. This could lead to remote escalation of privilege, when devices are connecting to the attacker-controllable Wi-Fi hotspot, with no additional execution privileges needed. User interaction is not needed for...

8.8CVSS

8.7AI Score

0.001EPSS

2022-06-06 06:15 PM
102
4
cve
cve

CVE-2022-21751

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06511132; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
47
2
cve
cve

CVE-2022-21754

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535953; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
54
2
cve
cve

CVE-2022-21755

In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545464; Issue ID:...

4.4CVSS

4.2AI Score

0.0004EPSS

2022-06-06 06:15 PM
53
2
cve
cve

CVE-2022-21747

In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06478078; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
59
2
cve
cve

CVE-2022-21752

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493873; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
51
2
cve
cve

CVE-2022-21746

In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479698; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
52
4
cve
cve

CVE-2022-21753

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493873; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
45
2
cve
cve

CVE-2022-21750

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06521283; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
67
2
oraclelinux
oraclelinux

Unbreakable Enterprise kernel-container security update

[4.14.35-2047.513.2.el7] - Revert 'rds/ib: recover rds connection from stuck tx path' (Nagappan Ramasamy Palaniappan) [Orabug: 34124234] [4.14.35-2047.513.1.el7] - mm/page-writeback: Fix performance when BDI's share of ratio is 0. (Chi Wu) [Orabug: 34050050] - esp: Fix possible buffer overflow...

7.8CVSS

-0.3AI Score

0.0004EPSS

2022-05-10 12:00 AM
35
oraclelinux
oraclelinux

Unbreakable Enterprise kernel security update

[4.14.35-2047.513.2] - Revert 'rds/ib: recover rds connection from stuck tx path' (Nagappan Ramasamy Palaniappan) [Orabug: 34124234] [4.14.35-2047.513.1] - mm/page-writeback: Fix performance when BDI's share of ratio is 0. (Chi Wu) [Orabug: 34050050] - esp: Fix possible buffer overflow in ESP...

7.8CVSS

-0.2AI Score

0.0004EPSS

2022-05-10 12:00 AM
83
cve
cve

CVE-2022-20103

In aee daemon, there is a possible information disclosure due to symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06383944; Issue ID:...

4.4CVSS

4.3AI Score

0.0004EPSS

2022-05-03 09:15 PM
61
4
cve
cve

CVE-2022-20104

In aee daemon, there is a possible information disclosure due to improper access control. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06419017; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-05-03 09:15 PM
53
4
cve
cve

CVE-2022-20111

In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06366069; Issue ID:...

8.4CVSS

8.1AI Score

0.0005EPSS

2022-05-03 09:15 PM
63
3
cve
cve

CVE-2022-21743

In ion, there is a possible use after free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06371108; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-05-03 09:15 PM
72
3
cve
cve

CVE-2022-20101

In aee daemon, there is a possible information disclosure due to a path traversal. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06419017; Issue ID:...

5.5CVSS

5.1AI Score

0.0005EPSS

2022-05-03 09:15 PM
57
6
cve
cve

CVE-2022-20102

In aee daemon, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06296442; Issue ID:...

4.4CVSS

4.3AI Score

0.0004EPSS

2022-05-03 09:15 PM
51
6
cve
cve

CVE-2022-20109

In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID:...

7.8CVSS

7.8AI Score

0.0004EPSS

2022-05-03 08:15 PM
101
2
cve
cve

CVE-2022-20092

In alac decoder, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06366061; Issue ID:...

5.5CVSS

5AI Score

0.0004EPSS

2022-05-03 08:15 PM
55
4
cve
cve

CVE-2022-20099

In aee daemon, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06296442; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-05-03 08:15 PM
58
6
cve
cve

CVE-2022-20110

In ion, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID:...

7CVSS

7AI Score

0.0004EPSS

2022-05-03 08:15 PM
62
2
cve
cve

CVE-2022-20091

In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06209201; Issue ID:...

6.4CVSS

6.6AI Score

0.0004EPSS

2022-05-03 08:15 PM
51
2
cve
cve

CVE-2022-20090

In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06209197; Issue ID:...

6.4CVSS

6.6AI Score

0.0004EPSS

2022-05-03 08:15 PM
55
cve
cve

CVE-2022-20087

In ccu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06477970; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-05-03 08:15 PM
53
3
cve
cve

CVE-2022-20096

In camera, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is no needed for exploitation. Patch ID: ALPS06419003; Issue ID:...

4.4CVSS

4.3AI Score

0.0004EPSS

2022-05-03 08:15 PM
52
2
cve
cve

CVE-2022-20095

In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479763; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-05-03 08:15 PM
51
2
cve
cve

CVE-2022-20085

In netdiag, there is a possible symbolic link following due to an improper link resolution. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06308877; Issue ID:...

6.7CVSS

6.6AI Score

0.0004EPSS

2022-05-03 08:15 PM
53
2
Total number of security vulnerabilities843