CVE-2019-20562

An issue was discovered on Samsung mobile devices with P9.0 with TEEGRIS software. There is a buffer overflow in the BIOSUB Trustlet. The Samsung ID is SVE-2019-15264 October 2019...

CVE-2022-20562

In various functions of apinputprocessor.c, there is a possible way to record audio during a phone call due to a logic error in the code. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...

CVE-2018-20562

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/articlecategory.php?rec=update has XSS via the catname parameter...

CVE-2023-42105

Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

CVE-2023-42105 Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt AR File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

CVE-2023-42105

The connected sources confirm CVE-2023-42105 affects Ashlar-Vellum Cobalt, with a vulnerability in the AR file parser that leads to a type confusion when parsing AR data. Root cause: insufficient validation of user-supplied data, allowing an attacker to trigger a type confusion and execute code i...

CVE-2023-20562

creationtimestamp| type| source ---|---|--- 2023-08-08 22:20:30+00:00| seen| https://t.me/cibsecurity/68053 2023-08-21 16:03:09+00:00| published-proof-of-concept| Telegram/ncICrMEkjIm97V-dTPYqSaPt50AjvGtTs9m9I4KyEl6Qyw 2023-08-21 22:30:15+00:00| published-proof-of-concept|...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

CVE-2023-20562

CVE-2023-20562 involves AMD μProf (AMD uProf) where there is insufficient validation in the IOCTL input buffer. The impact described across sources is that an authenticated user may load an unsigned driver, potentially enabling arbitrary kernel execution. Connected materials explicitly discuss ex...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

CVE-2022-20562

In various functions of apinputprocessor.c, there is a possible way to record audio during a phone call due to a logic error in the code. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...

CVE-2022-20562

The CVE-2022-20562 entry concerns a logic error in ap_input_processor.c within the Android kernel’s audio processing path that could allow recording audio during a phone call, leading to local information disclosure. The vulnerability is classified as Information Disclosure with a Local attack ve...

Security Bulletin: XSS Security Vulnerabilty Affects Mailbox UI of IBM Sterling B2B Integrator (CVE-2021-20562)

Summary IBM Sterling B2B Integrator has addressed a XSS vulnerability affecting the mailbox UI. Vulnerability Details CVEID: CVE-2021-20562 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip...

IBM Sterling B2B Integrator Cross Site Scripting Vulnerability

IBM Sterling B2B Integrator suffers from a cross site scripting vulnerability. Versions affected include 5.2.0.0 through 5.2.6.53, 6.0.0.0 through 6.0.3.4, and 6.1.0.0 through 6.1.0.2. ======================================================================= title: Reflected cross-site scripting...

IBM Sterling B2B Integrator Cross Site Scripting

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Reflected cross-site scripting vulnerability product: IBM Sterling B2B Integrator vulnerable version: 5.2.0.0 - 5.2.6.53 6.0.0.0 - 6.0.3.4 6.1.0.0 - 6.1.0.2 fixed version...

CVE-2021-20562

creationtimestamp| type| source ---|---|--- 2021-07-27 16:12:24+00:00| seen| https://t.me/cibsecurity/26541...

CVE-2019-20562

An issue was discovered on Samsung mobile devices with P9.0 with TEEGRIS software. There is a buffer overflow in the BIOSUB Trustlet. The Samsung ID is SVE-2019-15264 October 2019...

CVE-2019-20562

Summary: CVE-2019-20562 affects Samsung mobile devices running P(9.0) with TEEGRIS. The issue is a buffer overflow in the BIOSUB Trustlet. The description in connected sources consistently mirrors this, with no publicly disclosed exploitation details in the provided documents. The CVSS data (NVD)...

CVE-2018-20562

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/articlecategory.php?rec=update has XSS via the catname parameter...

CVE-2018-20562

Vulnerability summary (CVE-2018-20562): DouCo DouPHP 1.5 (build 20181221) contains a cross-site scripting flaw in admin/article_category.php?rec=update, exploitable through the cat_name parameter. The issue is that user-supplied input can be reflected in the page without proper sanitization, enab...