Lucene search
K

20 matches found

NVD
NVD
added 2026/01/13 6:16 p.m.2 views

CVE-2026-20853

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows WalletService allows an unauthorized attacker to elevate privileges locally...

7.4CVSS0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:7 a.m.6 views

CVE-2019-20853

An issue was discovered in Mattermost Packages before 5.16.3. A Droplet could allow Internet access to a service that has a remote code execution problem...

9.8CVSS7.8AI score0.02232EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:17 p.m.6 views

CVE-2021-20853

ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors...

6.8CVSS7.9AI score0.00422EPSS
Exploits0References1
Circl
Circl
added 2025/03/12 4:40 p.m.6 views

CVE-2024-20853

creationtimestamp| type| source ---|---|--- 2025-03-12 16:40:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7323...

5.1CVSS4.8AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:4 p.m.7 views

CVE-2022-20853

A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management...

7.4CVSS7.1AI score0.00615EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:15 a.m.24 views

CVE-2023-51589 BlueZ Audio Profile AVRCP parse_media_element Out-Of-Bounds Read Information Disclosure Vulnerability

BlueZ Audio Profile AVRCP parsemediaelement Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability ...

5.4CVSS6AI score0.00808EPSS
Exploits0References1
NVD
NVD
added 2024/04/02 3:15 a.m.9 views

CVE-2024-20853

Improper verification of intent by broadcast receiver vulnerability in ThemeStore prior to 5.3.05.2 allows local attackers to write arbitrary files to sandbox of ThemeStore...

5.1CVSS5.3AI score0.00152EPSS
Exploits0References1
CVE
CVE
added 2024/04/02 2:59 a.m.53 views

CVE-2024-20853

CVE-2024-20853 describes an issue in Samsung ThemeStore prior to 5.3.05.2, where improper verification of intent by a broadcast receiver allows local attackers to write arbitrary files to the ThemeStore sandbox. Affected component: ThemeStore (Android/mobile). Root cause: vulnerability in intent ...

5.1CVSS6.7AI score0.00152EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2023/04/27 7:39 a.m.5 views

CVE-2023-20853

creationtimestamp| type| source ---|---|--- 2023-04-27 07:39:48+00:00| seen| https://t.me/cibsecurity/62954...

9.8CVSS7.3AI score0.00986EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/27 12:0 a.m.16 views

CVE-2023-20853 aEnrich a+HRD - Deserialization of Untrusted Data

aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ asynchronized message process. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands to perform arbitrary system operation or disrupt service...

9.8CVSS10AI score0.00986EPSS
Exploits0References1
CVE
CVE
added 2023/04/27 12:0 a.m.44 views

CVE-2023-20853

The CVE-2023-20853 entry concerns aDeserialization of Untrusted Data in the aEnrich Technology a+HRD MSMQ asynchronous message processing. An unauthenticated remote attacker could trigger arbitrary command execution and disrupt services via deserialization of untrusted data. Affected component: M...

9.8CVSS9.9AI score0.00986EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/27 12:0 a.m.9 views

CVE-2023-20853 aEnrich a+HRD - Deserialization of Untrusted Data

aEnrich Technology a+HRD has a vulnerability of Deserialization of Untrusted Data within its MSMQ asynchronized message process. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system commands to perform arbitrary system operation or disrupt service...

9.8CVSS9.9AI score0.00986EPSS
Exploits0References1
Circl
Circl
added 2022/10/07 10:5 a.m.6 views

CVE-2022-20853

creationtimestamp| type| source ---|---|--- 2022-10-07 10:05:31+00:00| seen| https://t.me/truesecator/3526...

7.4CVSS4.8AI score0.00615EPSS
Exploits0References1
Circl
Circl
added 2021/12/01 7:35 a.m.5 views

CVE-2021-20853

creationtimestamp| type| source ---|---|--- 2021-12-01 07:35:02+00:00| seen| https://t.me/cibsecurity/33155...

6.8CVSS6.5AI score0.00422EPSS
Exploits0References1
NVD
NVD
added 2021/12/01 3:15 a.m.9 views

CVE-2021-20853

ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors...

6.8CVSS0.00422EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/12/01 2:15 a.m.20 views

CVE-2021-20853

ELECOM LAN routers WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors...

7.7AI score0.00422EPSS
Exploits0References2
CVE
CVE
added 2021/12/01 2:15 a.m.38 views

CVE-2021-20853

CVE-2021-20853 affects ELECOM LAN routers (WRH-733GBK/GWH), with firmware v1.02.9 and earlier, and is described as an OS command injection vulnerability that allows a network-adjacent attacker with administrator privileges to execute arbitrary OS commands via unspecified vectors. Connected record...

6.8CVSS7.4AI score0.00422EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/11/30 12:0 a.m.50 views

JVN#88993473: Multiple vulnerabilities in multiple ELECOM LAN routers

Multiple ELECOM LAN routers provided by ELECOM CO.,LTD. contain multiple vulnerabilities listed below. Buffer overflow CWE-121 - CVE-2021-20852 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H| Base Score: 6.8 CVSS v2| AV:A/AC:L/Au:S/C:P/I:P/A:P| Base Score...

8.8CVSS7.6AI score0.00585EPSS
Exploits0
CVE
CVE
added 2020/06/19 2:4 p.m.35 views

CVE-2019-20853

CVE-2019-20853 affects Mattermost Packages before 5.16.3. A Droplet could expose an Internet-accessible service with a remote code execution vulnerability. Vendors in connected docs confirm Mattermost Packages prior to 5.16.3 are vulnerable; remediation is to upgrade to 5.16.3 or later. Impacts i...

9.8CVSS9.5AI score0.02232EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/11/06 7:17 p.m.111 views

CVE-2018-20853

Technical details for CVE-2018-20853 are not publicly available in the provided documents. Monitor for updates from vendor and security advisories.

5.3CVSS5.3AI score0.00948EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder