22 matches found
CVE-2026-20939
creationtimestamp| type| source ---|---|--- 2026-01-13 18:01:16+00:00| seen| https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review 2026-01-13 18:16:30+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0007 2026-04-10 10:53:42+00:00| seen|...
CVE-2026-20939 Windows File Explorer Information Disclosure Vulnerability
...
CVE-2023-20939
In multiple functions of looperbackedeventloop.cpp, there is a possible way to corrupt memory due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2022-20939
A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to inadequate protection of sensitive user information. An attacker could exploit this...
CVE-2018-20939
cPanel before 68.0.27 allows a user to discover contents of directories that are not owned by that user by leveraging backups SEC-339...
CVE-2025-20939
Improper authorization in wireless download protocol in Galaxy Watch prior to SMR Apr-2025 Release 1 allows physical attackers to update device unique identifier of Watch devices...
CVE-2025-20939
creationtimestamp| type| source ---|---|--- 2025-04-08 05:47:29+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10854 2025-04-08 09:48:48+00:00| seen| https://t.me/cvedetector/22409...
CVE-2025-20939
Improper authorization in wireless download protocol in Galaxy Watch prior to SMR Apr-2025 Release 1 allows physical attackers to update device unique identifier of Watch devices...
CVE-2025-20939
Galaxy Watch devices pre-SMR Apr-2025 Release 1 are affected by an improper authorization flaw in the wireless download protocol that could let a physical attacker modify the device UID. The issue arises from the download protocol’s authorization checks. Impact is limited to UID modification; the...
CVE-2022-20939
A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vulnerability is due to inadequate protection of sensitive user information. An attacker could exploit this...
CVE-2022-20939
CVE-2022-20939 refers to a privilege-escalation vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) via the web-based management interface. The root cause is inadequate protection of sensitive user information, enabling an authenticated, remote attacker to access certain logs and ...
CVE-2023-51596
BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-51596
BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-51596
CVE-2023-51596 refers to a heap-based buffer overflow in BlueZ’s Phone Book Access Profile that can lead to remote code execution with root privileges after a device connection to a malicious Bluetooth device. The flaw arises from improper validation of user-supplied data length before copying in...
CVE-2024-20939
Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite component: Admin Console. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle CRM Technica...
CVE-2024-20939
CVE-2024-20939 affects Oracle E-Business Suite, specifically the Oracle CRM Technical Foundation Admin Console, with versions 12.2.3–12.2.13 vulnerable. The issue is an input validation/logic flaw that allows a low-privilege, network-accessible attacker via HTTP to cause a partial denial of servi...
CVE-2024-20939
...
CVE-2024-20939
creationtimestamp| type| source ---|---|--- 2024-02-08 08:41:21+00:00| seen| https://t.me/ctinow/181229 2024-02-17 03:26:56+00:00| seen| https://t.me/ctinow/186759...
CVE-2023-20939
creationtimestamp| type| source ---|---|--- 2023-02-28 20:27:53+00:00| seen| https://t.me/cibsecurity/59127 2025-03-21 18:20:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8403...
CVE-2023-20939
In multiple functions of looperbackedeventloop.cpp, there is a possible way to corrupt memory due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...