AlmaLinux 9 : grub2 (ALSA-2025:20532)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:20532 advisory. grub2: grub-core/gettext: Integer overflow leads to Heap OOB Write. CVE-2024-45777 Tenable has extracted the preceding description block directly from the AlmaLin...

CVE-2022-20532

In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2019-20532

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. Attackers can access the Developer options without authentication. The Samsung ID is SVE-2019-15800 December 2019...

CVE-2024-20532

creationtimestamp| type| source ---|---|--- 2024-11-06 19:10:43+00:00| seen| https://t.me/cvedetector/10022 2024-11-07 14:20:08+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113442108664352339 2024-11-07 14:20:08+00:00| seen|...

CVE-2024-20532

A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and delete arbitrary files on an affected device. To exploit this vulnerability, the attacker would need valid Super Admin credentials. This vulnerability is due to insufficient validation of user-suppli...

Ubuntu 16.04 ESM / 18.04 ESM : Libsolv vulnerabilities (USN-4851-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4851-1 advisory. It was discovered that Libsolv incorrectly handled certain malformed input. An attacker could use this issue to cause Libsolv to crash,...

Oracle Linux 7 : libsolv (ELSA-2019-2290)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2290 advisory. - Fix NULL pointer dereference CVE-2018-20532, CVE-2018-20533 - Fix illegal address access in poolwhatprovides CVE-2018-20534 Tenable has extracted the...

CVE-2022-20532

creationtimestamp| type| source ---|---|--- 2023-03-24 23:47:52+00:00| seen| https://t.me/cibsecurity/60692...

CVE-2022-20532

In CVE-2022-20532, the vulnerability lies in MPEG4Extractor.cpp’s parseTrackFragmentRun() where an integer overflow can cause an out-of-bounds read. This may enable remote elevation of privileges without user interaction on Android 13 devices. Documented impact is high across confidentiality, int...

CVE-2022-20532

In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2023-20532

Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potentially resulting in a denial of service...

CVE-2023-20532

CVE-2023-20532 describes insufficient input validation in the AMD System Management Unit (SMU) that may allow an attacker to lock resources and cause a denial of service. Connected AMD documentation confirms the vulnerability affects SMU components and provides mitigations in the AMD-SB-1032 bull...

CVE-2023-20532

Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potentially resulting in a denial of service...

Security Bulletin: Privilege escalation vulnerability in IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments (CVE-2021-20532)

Summary IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments may allow a local user to escalate their privileges. UPDATED: 14 June 2021 - Added 7.1 fix for IBM Spectrum Protect for Virtual Environments: Data Protection for VMware. Vulnerability Details CVEI...

CVE-2021-20532

CVE-2021-20532 affects IBM Spectrum Protect Client (and related components) versions 8.1.0.0–8.1.11.0, where insecure directory permissions could allow a local user to escalate privileges and gain full control of the system. The IBM Security Bulletin details the vulnerability, its impact (local p...

SUSE: Security Advisory (SUSE-SU-2020:2660-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

NewStart CGSL CORE 5.04 / MAIN 5.04 : libsolv Multiple Vulnerabilities (NS-SA-2021-0014)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libsolv packages installed that are affected by multiple vulnerabilities: - There is a NULL pointer dereference at ext/testcase.c function testcaseread in libsolvext.a in libsolv through 0.7.2 that will cause a denial of...

SUSE SLES12 Security Update : libsolv (SUSE-SU-2020:2660-1)

This update for libsolv fixes the following issues : This is a reissue of an existing libsolv update that also included libsolv-devel for LTSS products. libsolv was updated to version 0.6.36 fixes the following issues : Security issues fixed : CVE-2018-20532: Fixed a NULL pointer dereference in...

SUSE-SU-2020:2660-1 Security update for libsolv

This update for libsolv fixes the following issues: This is a reissue of an existing libsolv update that also included libsolv-devel for LTSS products. libsolv was updated to version 0.6.36 fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed a NULL pointer dereference in...

CVE-2019-20532

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. Attackers can access the Developer options without authentication. The Samsung ID is SVE-2019-15800 December 2019...