CVE-2021-0970

In createFromParcel of GpsNavigationMessage.java, there is a possible Parcel serialization/deserialization mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-1...

CVE-2020-0970

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0968...

CVE-2013-0970

Messages in Apple Mac OS X before 10.8.3 allows remote attackers to bypass the FaceTime call-confirmation prompt via a crafted FaceTime: URL...

WordPress User Activity Tracking and Log plugin < 4.1.4 - IP Spoofing vulnerability

IP Spoofing vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin User Activity Tracking and Log versions 4.1.4...

CVE-2024-0970

creationtimestamp| type| source ---|---|--- 2025-05-15 20:33:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16568...

CVE-2024-0970 User Activity Tracking and Log < 4.1.4 - IP Spoofing

This User Activity Tracking and Log WordPress plugin before 4.1.4 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value...

CVE-2024-0970

CVE-2024-0970 concerns the WordPress plugin User Activity Tracking and Log (pre-4.1.4). The vulnerability stems from retrieving client IP addresses from untrusted headers, enabling an attacker to spoof/manipulate the logged IP address in activity logs. Public sources in the connected data confirm...

CVE-2025-0970

A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Account/Login. The manipulation of the argument ReturnUrl leads to open redirect. The attack can be launched remotely. The...

CVE-2025-0970

creationtimestamp| type| source ---|---|--- 2025-02-02 23:15:33+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lha5txb3kr2c 2025-02-03 00:03:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lhaajcduyt2r 2025-02-03 01:05:10+00:00| seen|...

CVE-2025-0970

A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Account/Login. The manipulation of the argument ReturnUrl leads to open redirect. The attack can be launched remotely. The...

CVE-2025-0970

The CVE-2025-0970 entry affects Zenvia Movidesk (up to version 25.01.22) and is caused by an open redirect vulnerability in the /Account/Login endpoint via manipulation of the ReturnUrl parameter. The vulnerability enables remote attackers to redirect users to arbitrary URLs, with user interactio...

CVE-2025-0970 Zenvia Movidesk Login redirect

A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Account/Login. The manipulation of the argument ReturnUrl leads to open redirect. The attack can be launched remotely. The...

CVE-2025-0970 Zenvia Movidesk Login redirect

A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Account/Login. The manipulation of the argument ReturnUrl leads to open redirect. The attack can be launched remotely. The...

RHSA-2024:0970

creationtimestamp| type| source ---|---|--- 2024-02-28 18:22:18+00:00| seen| https://t.me/ctinow/195716...

RHEL 8 : firefox (RHSA-2024:0970)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:0970 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

CVE-2023-0970

creationtimestamp| type| source ---|---|--- 2023-06-22 00:39:40+00:00| seen| https://t.me/cibsecurity/65400...

CVE-2023-0970 Serial API Buffer Overflow in Z/IP Gateway

Multiple buffer overflow vulnerabilities in SiLabs Z/IP Gateway SDK version 7.18.01 and earlier allow an attacker with invasive physical access to a Z-Wave controller device to overwrite global memory and potentially execute arbitrary code...

CVE-2023-0970

Multiple buffer overflow vulnerabilities affect SiLabs Z/IP Gateway SDK versions 7.18.01 and earlier . The root cause is memory corruption that an attacker with invasive physical access to a Z‑Wave controller device can exploit to overwrite global memory and potentially execute arbitrary code. Im...

Rocky Linux 9 : httpd (RLSA-2023:0970)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0970 advisory. - A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool heap memory location beyond the header value...

Oracle Linux 9 : httpd (ELSA-2023-0970)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0970 advisory. - Resolves: 2165970 - CVE-2006-20001 httpd: moddav: out-of-bounds read/write of zero byte - Resolves: 2165973 - CVE-2022-37436 httpd: modproxy: HTTP...