CVE-2025-20755

In Modem, there is a possible application crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-20755

In Modem, there is a possible application crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-20755

In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07509605...

CVE-2024-20755

creationtimestamp| type| source ---|---|--- 2024-03-18 17:26:56+00:00| seen| https://t.me/ctinow/210759 2024-03-18 17:32:01+00:00| seen| https://t.me/ctinow/210773...

CVE-2024-20755

Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-20755

Adobe Bridge CVE-2024-20755 is a heap-based buffer overflow in PDF parsing that can lead to arbitrary code execution in the context of the current user. Affected: Bridge 13.0.5, 14.0.1 and earlier. Exploitation requires the user to open a malicious file. Remediation per advisories is to upgrade t...

CVE-2024-20755 Adobe Bridge PDF Parsing Heap Memory Corruption Remote Code Execution Vulnerability

Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

Adobe Bridge Multiple Vulnerabilities (APSB24-15) - Windows

The Adobe Bridge device is missing a security update announced via the apsb24-15 advisory. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

Adobe Bridge 13.x < 13.0.6 / 14.x < 14.0.2 Multiple Vulnerabilities (APSB24-15)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 13.0.6 or 14.0.2. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb24-15 advisory. - Bridge versions 13.0.5, 14.0.1 and earlier are affected by an out-of-bounds write vulnerabilit...

CVE-2023-20755

creationtimestamp| type| source ---|---|--- 2023-07-04 07:28:11+00:00| seen| https://t.me/cibsecurity/65907...

CVE-2023-20755

CVE-2023-20755 is a MediaTek keyinstall vulnerability. An out-of-bounds write caused by an integer overflow could allow local privilege escalation with System execution privileges, without user interaction. The issue is tracked as MediaTek ALPS07510064 (Issue ALPS07509605). Public references indi...

CVE-2022-20755

CVE-2022-20755 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). An authenticated, remote attacker with read/write privileges can exploit weaknesses in the API and web-based management interfaces to write arbitrary files or execute code on the underlying OS ...

Update now! Cisco fixes several vulnerabilities

Cisco has released a security advisory about two vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server VCS. The flaws could allow an authenticated, remote attacker with read/write privileges to the application t...

Critical Patches Issued for Cisco Expressway Series, TelePresence VCS Products

Cisco this week shipped patches to address a new round of critical security vulnerabilities affecting Expressway Series and Cisco TelePresence Video Communication Server VCS that could be exploited by an attacker to gain elevated privileges and execute arbitrary code. The two flaws – tracked as...

CVE-2022-20755

creationtimestamp| type| source ---|---|--- 2022-03-03 13:14:13+00:00| seen| https://t.me/truesecator/2693 2022-03-03 19:53:52+00:00| seen| https://t.me/NeKaspersky/1922 2022-04-06 22:30:40+00:00| seen| https://t.me/cibsecurity/40259...

CVE-2021-20755

CVE-2021-20755 (Cybozu Garoon Portal viewing restriction bypass) is a vulnerability in Cybozu Garoon where a user who can log in can obtain portal data without the proper viewing privileges. The CVE is listed with a CVSSv3 base score of 4.3 (CVSSv2 base score 4.0). Affected products include Cyboz...

JVN#54794245: Multiple vulnerabilities in Cybozu Garoon

Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-1782 Cross-site scripting vulnerability in Scheduler CWE-79 - CVE-2021-20753 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 5.4 CVSS v2|...

CVE-2019-20755

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6220 before 1.0.0.46, D6400 before 1.0.0.80, D7000v2 before 1.0.0.51, D8500 before 1.0.3.42, DGN2200v1 before 1.0.0.58, DGN2200B before 1.0.0.58, JNDR3000 before 1.0.0.24, RBW30 before...

CVE-2019-20755

The CVE-2019-20755 entry concerns NETGEAR devices affected by a stack-based buffer overflow, exploitable by an authenticated user. Affected models and minimum/maximum versions are listed: D6220 (&lt;1.0.0.46), D6400 (&lt;1.0.0.80), D7000v2 (&lt;1.0.0.51), D8500 (&lt;1.0.3.42), DGN2200v1 (&lt;1.0....

CVE-2018-20755

MODX Revolution through v2.7.0-pl allows XSS via the User Photo field...