14 matches found
CVE-2019-20524
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter...
CVE-2022-20524
In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2024-20524
creationtimestamp| type| source ---|---|--- 2024-10-02 19:42:35+00:00| seen| https://t.me/cvedetector/6849...
CVE-2023-41183
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability
NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...
CVE-2023-20524
An attacker with a compromised ASP could possibly send malformed commands to an ASP on another CPU, resulting in an out of bounds write, potentially leading to a loss a loss of integrity...
CVE-2023-20524
CVE-2023-20524 affects the AMD Secure Processor (ASP) and AMD System Management Unit (SMU). The vulnerability description states that a compromised ASP could send malformed commands to an ASP on another CPU, causing an out-of-bounds write and potentially a loss of integrity. Public references in ...
CVE-2022-20524
In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2022-20524
In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2022-20524
The CVE-2022-20524 issue affects Android 13 devices due to a use-after-free in Vibrator.cpp, enabling arbitrary code execution and local privilege escalation without extra user interaction. The vulnerability is classified as a LOCAL, low-privilege issue with high confidentiality, integrity, and a...
Security Bulletin: Multiple Security vulnerabilities have been fixed in the IBM Security Verify Access Docker container
Summary Multiple vulnerabilities have been fixed in the IBM Security Verify Access Docker container. Vulnerability Details CVEID: CVE-2021-20523 DESCRIPTION: IBM Security Access Manager Docker could allow a remote attacker to obtain sensitive information when a detailed technical error message is...
CVE-2021-20524
CVE-2021-20524 affects IBM Security Verify Access Docker 10.0.0, vulnerable to cross-site scripting in the Web UI, potentially enabling credential disclosure within a trusted session. Root cause is cross-site scripting on the Docker container UI. Remediation: upgrade to the patched container vers...
CVE-2018-20524
Affected software: Chat Anywhere extension for Chrome, version 2.4.0. Vulnerability details: A cross-site scripting (XSS) flaw exists because the danmuWrapper DIV in chatbox-only\danmu.js lies outside the scope of the extension’s Content Security Policy (CSP). This can be exploited via crafted me...