18 matches found
CVE-2018-20885
cPanel before 74.0.0 allows Apache HTTP Server configuration injection because of DocumentRoot variable interpolation SEC-416...
CVE-2025-20885
Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption...
CVE-2025-20885
creationtimestamp| type| source ---|---|--- 2025-02-04 08:16:12+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhdmjnjcpq2n 2025-02-14 10:05:00+00:00| seen| Telegram/eSLtm40tqu7L2HS90-DZe7BF88g1z3oXEtduAb-RfqfMSoAV...
CVE-2025-20885
Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption...
CVE-2025-20885
Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption...
CVE-2025-20885
Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption...
CVE-2025-20885
CVE-2025-20885 is an out-of-bounds write vulnerability in the softsim trustlet used by Samsung Mobile devices prior to SMR Jan-2025 Release 1. The issue enables local privileged attackers to cause memory corruption. Publicly documented impact includes possible elevation of privileges and access t...
CVE-2024-20885
CVE-2024-20885 affects Samsung Dialer prior to SMR May-2024 Release 1. The vulnerability is an improper component protection issue that allows local attackers to place a call without proper permission. Impact is described as local, with low to medium severities in provided metrics (CVSS base scor...
CVE-2024-20885
Improper component protection vulnerability in Samsung Dialer prior to SMR May-2024 Release 1 allows local attackers to make a call without proper permission...
CVE-2023-20885
Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions...
CVE-2023-20885 CF workflows leak credentials in system audit logs
Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions...
CVE-2023-20885 CF workflows leak credentials in system audit logs
Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions...
CVE-2023-20885
CVE-2023-20885 affects Cloud Foundry components: Notifications, SMB-volume, and cf-nfs-volume. The root issue is leakage of credentials through kernel audit logs, where arguments passed to binaries that access the filesystem can disclose admin/service credentials (e.g., cf auth --client-credentia...
CVE-2022-20885
creationtimestamp| type| source ---|---|--- 2022-07-21 18:21:17+00:00| seen| https://t.me/cibsecurity/46752...
CVE-2022-20885
The CVE-2022-20885 entry covers multiple vulnerabilities in Cisco Small Business RV110W/RV130/RV130W/RV215W routers’ web-based management interface. Root cause: insufficient validation of user fields within incoming HTTP packets, enabling an authenticated attacker with Administrator credentials t...
CVE-2019-20885
Mattermost Server prior to 5.8.0 may not consistently generate a robots.txt file. Affected product is Mattermost Server; the issue is that robots.txt generation is not guaranteed, but the exact root cause, affected versions beyond 5.8.0, potential impact, exploitation details, and remediations ar...
CVE-2018-20885
cPanel before 74.0.0 allows Apache HTTP Server configuration injection because of DocumentRoot variable interpolation SEC-416...
CVE-2018-20885
cPanel before 74.0.0 allows Apache HTTP Server configuration injection because of DocumentRoot variable interpolation SEC-416...