Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

Circl
Circladded 2026/01/13 6:1 p.m.6 views

CVE-2026-20947

creationtimestamp| type| source ---|---|--- 2026-01-13 18:01:16+00:00| seen| https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review 2026-01-13 18:18:45+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0010 2026-01-14 15:20:06+00:00| seen|...

8.8CVSS5.7AI score0.00464EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/01/13 5:56 p.m.20 views

CVE-2026-20947 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

8.8CVSS0.00464EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 9:36 a.m.3 views

CVE-2024-20947

Vulnerability in the Oracle Common Applications product of Oracle E-Business Suite component: CRM User Management Framework. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS6AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 12:59 p.m.4 views

CVE-2018-20947

cPanel before 68.0.27 allows certain file-write operations via the telnetcrt script SEC-356...

5.5CVSS7AI score0.00068EPSS
Exploits0References1
OSV
OSVadded 2025/04/08 5:15 a.m.0 views

CVE-2025-20947

Improper handling of insufficient permission or privileges in ClipboardService prior to SMR Apr-2025 Release 1 allows local attackers to access image files across multiple users. User interaction is required for triggering this vulnerability...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References1
NVD
NVDadded 2025/04/08 5:15 a.m.4 views

CVE-2025-20947

Improper handling of insufficient permission or privileges in ClipboardService prior to SMR Apr-2025 Release 1 allows local attackers to access image files across multiple users. User interaction is required for triggering this vulnerability...

5.5CVSS0.00117EPSS
Exploits0References1
Circl
Circladded 2025/04/08 4:46 a.m.0 views

CVE-2025-20947

creationtimestamp| type| source ---|---|--- 2025-04-08 04:46:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10831 2025-04-08 09:48:36+00:00| seen| https://t.me/cvedetector/22401...

5.5CVSS4.8AI score0.00117EPSS
Exploits0References2
CVE
CVEadded 2025/04/08 4:40 a.m.50 views

CVE-2025-20947

CVE-2025-20947 describes improper permission handling in ClipboardService prior to SMR Apr-2025 Release 1, enabling local attackers to access image files across multiple users with user interaction required. Affected software: ClipboardService versions prior to 1.0. Root cause: insufficient privi...

5.5CVSS6.9AI score0.00117EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/04/08 4:40 a.m.6 views

CVE-2025-20947

Improper handling of insufficient permission or privileges in ClipboardService prior to SMR Apr-2025 Release 1 allows local attackers to access image files across multiple users. User interaction is required for triggering this vulnerability...

5.5CVSS6.9AI score0.00117EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/08 4:40 a.m.22 views

CVE-2025-20947

Improper handling of insufficient permission or privileges in ClipboardService prior to SMR Apr-2025 Release 1 allows local attackers to access image files across multiple users. User interaction is required for triggering this vulnerability...

5.5CVSS0.00117EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 9:5 p.m.8 views

CVE-2022-20947

A vulnerability in dynamic access policies DAP functionality of Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. This...

8.6CVSS7.1AI score0.00792EPSS
Exploits0References1
OSV
OSVadded 2024/02/17 2:15 a.m.3 views

CVE-2024-20947

Vulnerability in the Oracle Common Applications product of Oracle E-Business Suite component: CRM User Management Framework. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS7.3AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/02/17 1:50 a.m.18 views

CVE-2024-20947

...

5.4CVSS6.9AI score0.00234EPSS
Exploits0References1
CVE
CVEadded 2024/02/17 1:50 a.m.55 views

CVE-2024-20947

CVE-2024-20947 affects Oracle E-Business Suite, Oracle Common Applications (CRM User Management Framework) and impacts version 12.2.3–12.2.13. The vulnerability allows a low-privilege, network-access attacker (HTTP) to compromise Oracle Common Applications with user interaction required. Conseque...

5.4CVSS5.2AI score0.00234EPSS
Exploits0References1Affected Software1
Circl
Circladded 2023/03/24 11:51 p.m.2 views

CVE-2023-20947

creationtimestamp| type| source ---|---|--- 2023-03-24 23:51:04+00:00| seen| https://t.me/cibsecurity/60719 2023-10-23 03:00:37+00:00| published-proof-of-concept| https://t.me/androidMalware/1922...

7.8CVSS7.5AI score0.00022EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2023/03/24 12:0 a.m.4 views

CVE-2023-20947

In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permission granted due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8AI score0.00022EPSS
Exploits0References1
CVE
CVEadded 2023/03/24 12:0 a.m.134 views

CVE-2023-20947

CVE-2023-20947 is an Elevation of Privilege vulnerability in Android affecting the getGroupState function in GrantPermissionsViewModel.kt. The issue can allow a local attacker with low privileges to bypass permission handling and keep a one-time permission granted, enabling local escalation witho...

7.8CVSS7.6AI score0.00022EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/03/24 12:0 a.m.14 views

CVE-2023-20947

In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permission granted due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.9AI score0.00022EPSS
Exploits0References1
CVE
CVEadded 2022/11/10 5:29 p.m.101 views

CVE-2022-20947

CVE-2022-20947 affects Cisco ASA and Firepower Threat Defense (FTD) software via the Dynamic Access Policies (DAP) feature. The root cause is improper processing of HostScan data from the Posture module, allowing an unauthenticated, remote attacker to cause an affected device to reload and suffer...

8.6CVSS7.5AI score0.00792EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2019/08/01 5:15 p.m.11 views

CVE-2018-20947

cPanel before 68.0.27 allows certain file-write operations via the telnetcrt script SEC-356...

5.5CVSS5.6AI score0.00068EPSS
Exploits0References1
Rows per page
Query Builder