14 matches found
PT-2025-48372
Actively exploited CVE : CVE-2025-20833...
Belkin F9K1122 Stack Buffer Overflow Vulnerability (CNVD-2025-20833)
The Belkin F9K1122 is a WiFi signal extender. The Belkin F9K1122 suffers from a stack buffer overflow vulnerability that originates from the incorrect manipulation of the parameter webpage in the file /goform/formSetLanguage, no details of the vulnerability are provided at this time...
CVE-2024-20833
Use after free vulnerability in pubcryptorecvmsg prior to SMR Mar-2024 Release 1 due to race condition allows local attackers with system privilege to cause memory corruption...
CVE-2022-20833
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. These vulnerabilities are due t...
CVE-2024-20833
creationtimestamp| type| source ---|---|--- 2024-03-05 09:27:09+00:00| seen| https://t.me/ctinow/200032 2024-03-05 09:27:11+00:00| seen| https://t.me/ctinow/200034 2025-02-14 10:01:37+00:00| seen| Telegram/TLr417CK2nUQPcT-3dkk0Qx-Sqs17gAMfKMMDgydHbEq2-y...
CVE-2024-20833
The CVE-2024-20833 entry describes a use-after-free issue in the Samsung Mobile software component pub_crypto_recv_msg , triggered by a race condition prior to the SMR Mar-2024 Release 1. The vulnerability allows local attackers with system privilege to cause memory corruption. Documents consiste...
CVE-2023-20833
In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017756; Issue ID: ALPS08017764...
CVE-2023-20833
The CVE-2023-20833 issue concerns MediaTek devices featuring the keyinstall component. A missing bounds check in keyinstall is reported to cause local information disclosure, with the prerequisite that system execution privileges are required and no user interaction is needed for exploitation. Th...
CVE-2022-20833
CVE-2022-20833 concerns multiple stored XSS flaws in the web-based management interface of Cisco Firepower Management Center (FMC). The root cause is inadequate validation of user-supplied input in the FMC web UI, enabling an authenticated, remote attacker to inject script code via various data f...
CVE-2021-20833
The SNKRDUNK Market Place App for iOS versions prior to 2.2.0 does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on and/or alter encrypted communication via a crafted certificate...
CVE-2021-20833
The CVE-2021-20833 advisory concerns the SNKRDUNK Market Place App for iOS prior to version 2.2.0, which has improper server certificate verification. The underlying issue is certificate validation failure in the app, enabling a man-in-the-middle (MitM) attacker to eavesdrop on and potentially al...
CVE-2019-20833
An issue was discovered in Foxit PhantomPDF before 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive...
CVE-2019-20833
Foxit PhantomPDF before version 8.3.10 contains a cloud credential mishandling vulnerability (CVE-2019-20833). The issue affects PhantomPDF and can allow access to documents on Google Drive due to improper handling of cloud credentials. The connected sources (Red Hat, CNVD, NVD, CVE listings) con...
CVE-2019-20833
An issue was discovered in Foxit PhantomPDF before 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive...