Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:7 a.m.8 views

CVE-2019-20524

ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter...

6.1CVSS5.9AI score0.007EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:36 p.m.3 views

CVE-2022-20524

In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

7.8CVSS7.6AI score0.0017EPSS
Exploits0References1
Circl
Circl
added 2024/10/02 7:42 p.m.4 views

CVE-2024-20524

creationtimestamp| type| source ---|---|--- 2024-10-02 19:42:35+00:00| seen| https://t.me/cvedetector/6849...

6.8CVSS4.8AI score0.00476EPSS
Exploits0References1
NVD
NVD
added 2024/05/03 3:15 a.m.15 views

CVE-2023-41183

NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS8.9AI score0.15333EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:11 a.m.29 views

CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability

NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS9AI score0.15333EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:11 a.m.14 views

CVE-2023-41183 NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability

NETGEAR Orbi 760 SOAP API Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR Orbi 760 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS6.8AI score0.15333EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/09 6:36 p.m.13 views

CVE-2023-20524

An attacker with a compromised ASP could possibly send malformed commands to an ASP on another CPU, resulting in an out of bounds write, potentially leading to a loss a loss of integrity...

9.5AI score0.00494EPSS
Exploits0References1
CVE
CVE
added 2023/05/09 6:36 p.m.64 views

CVE-2023-20524

CVE-2023-20524 affects the AMD Secure Processor (ASP) and AMD System Management Unit (SMU). The vulnerability description states that a compromised ASP could send malformed commands to an ASP on another CPU, causing an out-of-bounds write and potentially a loss of integrity. Public references in ...

7.5CVSS8AI score0.00494EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/12/16 4:15 p.m.2 views

CVE-2022-20524

In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

7.8CVSS6.3AI score0.0017EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/16 12:0 a.m.4 views

CVE-2022-20524

In compose of Vibrator.cpp, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

8AI score0.0017EPSS
Exploits0References1
CVE
CVE
added 2022/12/16 12:0 a.m.91 views

CVE-2022-20524

The CVE-2022-20524 issue affects Android 13 devices due to a use-after-free in Vibrator.cpp, enabling arbitrary code execution and local privilege escalation without extra user interaction. The vulnerability is classified as a LOCAL, low-privilege issue with high confidentiality, integrity, and a...

7.8CVSS7.9AI score0.0017EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/30 5:0 a.m.66 views

Security Bulletin: Multiple Security vulnerabilities have been fixed in the IBM Security Verify Access Docker container

Summary Multiple vulnerabilities have been fixed in the IBM Security Verify Access Docker container. Vulnerability Details CVEID: CVE-2021-20523 DESCRIPTION: IBM Security Access Manager Docker could allow a remote attacker to obtain sensitive information when a detailed technical error message is...

9.8CVSS0.7AI score0.0399EPSS
Exploits3Affected Software1
CVE
CVE
added 2021/07/15 5:16 p.m.58 views

CVE-2021-20524

CVE-2021-20524 affects IBM Security Verify Access Docker 10.0.0, vulnerable to cross-site scripting in the Web UI, potentially enabling credential disclosure within a trusted session. Root cause is cross-site scripting on the Docker container UI. Remediation: upgrade to the patched container vers...

4.8CVSS5.2AI score0.00487EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/12/27 5:0 p.m.45 views

CVE-2018-20524

Affected software: Chat Anywhere extension for Chrome, version 2.4.0. Vulnerability details: A cross-site scripting (XSS) flaw exists because the danmuWrapper DIV in chatbox-only\danmu.js lies outside the scope of the extension’s Content Security Policy (CSP). This can be exploited via crafted me...

6.1CVSS5.9AI score0.00707EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder