CVE-2026-11167

creationtimestamp| type| source ---|---|--- 2026-06-05 13:24:19+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918...

Linux Distros Unpatched Vulnerability : CVE-2026-11167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to...

CVE-2026-11167

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

CVE-2019-11167

Improper file permission in software installer for IntelR Smart Connect Technology for IntelR NUC may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-11167

creationtimestamp| type| source ---|---|--- 2025-10-11 09:17:05+00:00| seen| Telegram/Tykb1sTjWK5k0O-KuDVI-tk0kFoK8lBKwrxXe4kVJ0xEh0...

CVE-2020-11167

Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends more data than expected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearab...

CVE-2024-11167

An improper access control vulnerability in danny-avila/librechat versions prior to 0.7.6 allows authenticated users to delete other users' prompts via the groupid parameter. This issue occurs because the endpoint does not verify whether the provided prompt ID belongs to the current user...

CVE-2024-11167 Improper Access Control in danny-avila/librechat

An improper access control vulnerability in danny-avila/librechat versions prior to 0.7.6 allows authenticated users to delete other users' prompts via the groupid parameter. This issue occurs because the endpoint does not verify whether the provided prompt ID belongs to the current user...

CVE-2024-11167 Improper Access Control in danny-avila/librechat

An improper access control vulnerability in danny-avila/librechat versions prior to 0.7.6 allows authenticated users to delete other users' prompts via the groupid parameter. This issue occurs because the endpoint does not verify whether the provided prompt ID belongs to the current user...

CVE-2023-6058 HTTPS Certificate Validation Issue in Bitdefender Safepay (VA-11167)

A vulnerability has been identified in Bitdefender Safepay's handling of HTTPS connections. The issue arises when the product blocks a connection due to an untrusted server certificate but allows the user to add the site to exceptions, resulting in the product trusting the certificate for...

Jsish Denial of Service Vulnerability (CNVD-2022-11167)

Jsish is a small JavaScript parser with a built-in database written in C. A security vulnerability exists in Jsish v3.5.0, which could lead to a denial of service DoS...

CVE-2020-11167

CVE-2020-11167 is a Qualcomm Snapdragon Bluetooth issue where memory corruption can occur in the L2CAP reassembly logic if a remote device sends more data than expected. Connected sources (Qualcomm December 2020 bulletins, Red Hat advisory, NVD entry) confirm affected Snapdragon Bluetooth compone...

CVE-2019-11167

Improper file permission in software installer for IntelR Smart Connect Technology for IntelR NUC may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2019-11167

Improper file permission in software installer for IntelR Smart Connect Technology for IntelR NUC may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2019-11167

CVE-2019-11167 affects Intel Smart Connect Technology for Intel NUC. Root cause: improper file permissions in the software installer, enabling an authenticated local user to escalate privileges via local access. According to the Intel advisory, the vendor does not provide patches and recommends u...

CVE-2018-11167

CVE-2018-11167 affects Quest DR Series Disk Backup Software prior to 4.0.3.1, enabling command injection through the appliance web interface/JSON-RPC paths. Core documentation shows a family of related command-injection vulnerabilities (e.g., unauthenticated login and authenticated actions) that ...

CVE-2017-11167

CVE-2017-11167 affects FineCMS 2.1.0. The vulnerability allows remote attackers to execute arbitrary PHP code by abusing the URL Manager’s “Add Site” action: entering code after a ', sequence in a domain name, demonstrated with ',phpinfo()'. Connected CNVD/CNVD-2017-15550 and NVD entries corrobor...