20 matches found
CVE-2026-20972
creationtimestamp| type| source ---|---|--- 2026-01-09 08:45:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mby47h5dav2r...
CVE-2026-20972
Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB...
CVE-2026-20972
Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB...
CVE-2026-20972
CVE-2026-20972 corresponds to Samsung’s SVE-2025-2255. Description: Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB. Connected docs indicate this is addressed by a Samsung patch in the SMR Jan-2026 Release 1, descri...
Linux Distros Unpatched Vulnerability : CVE-2024-20972
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and...
CVE-2025-20972
creationtimestamp| type| source ---|---|--- 2025-05-07 13:09:19+00:00| seen| https://t.me/cvedetector/24699...
CVE-2025-20972
Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration...
CVE-2025-20972
Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration...
CVE-2025-20972
Samsung Flow is affected by an improper verification of intent in the broadcast receiver in versions prior to 4.9.17.6, enabling local attackers to modify the Flow configuration. The issue is documented across multiple sources, with PT-Security specifying the affected versions and a remediation: ...
CVE-2023-20972
creationtimestamp| type| source ---|---|--- 2025-02-25 16:23:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5322...
Fedora: Security Advisory (FEDORA-2024-c611359ae1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2024-20972
unknown...
CVE-2024-20972
CVE-2024-20972 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.35 and prior and 8.2.0 and prior . The vulnerability is described as easily exploitable with a high-privilege attacker over network protocols, potentially causing a hang or frequent...
CVE-2024-20972
...
CVE-2024-20972
creationtimestamp| type| source ---|---|--- 2024-02-10 08:36:12+00:00| seen| https://t.me/ctinow/182474 2025-03-29 00:28:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9519...
Oracle MySQL Server 8.x <= 8.0.35, 8.1.x <= 8.2.0 Security Update (cpujan2024) - Linux
Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...
CVE-2023-20972
In btmvendorspecificevt of btmdevctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2023-20972
CVE-2023-20972 affects Android 13. The issue is in btm_vendor_specific_evt within btm_devctl.cc, where a missing bounds check enables an out-of-bounds read that could cause local information disclosure. Exploitation is reported as requiring System privileges with LOCAL attack vector and no user i...
CVE-2018-20972
The companion-auto-update plugin before 3.2.1 for WordPress has CSRF...
CVE-2018-20972
CVE-2018-20972 is a CSRF vulnerability in the WordPress plugin companion-auto-update prior to version 3.2.1. The connected sources consistently describe an insufficient verification of request origin that allows cross-site requests to perform unintended actions on behalf of an authenticated user....