Lucene search
K

20 matches found

Circl
Circl
added 2026/01/09 8:45 a.m.7 views

CVE-2026-20972

creationtimestamp| type| source ---|---|--- 2026-01-09 08:45:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mby47h5dav2r...

4.8CVSS5.8AI score0.00116EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/09 6:16 a.m.4 views

CVE-2026-20972

Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB...

4.8CVSS6AI score0.00116EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/09 6:16 a.m.29 views

CVE-2026-20972

Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB...

4.8CVSS0.00116EPSS
Exploits0References1
CVE
CVE
added 2026/01/09 6:16 a.m.18 views

CVE-2026-20972

CVE-2026-20972 corresponds to Samsung’s SVE-2025-2255. Description: Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows local attackers to enable UWB. Connected docs indicate this is addressed by a Samsung patch in the SMR Jan-2026 Release 1, descri...

4.8CVSS6AI score0.00116EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.35 views

Linux Distros Unpatched Vulnerability : CVE-2024-20972

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and...

4.9CVSS5.5AI score0.01096EPSS
Exploits0References2
Circl
Circl
added 2025/05/07 1:9 p.m.7 views

CVE-2025-20972

creationtimestamp| type| source ---|---|--- 2025-05-07 13:09:19+00:00| seen| https://t.me/cvedetector/24699...

6.2CVSS4.8AI score0.00113EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 9:15 a.m.10 views

CVE-2025-20972

Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration...

6.2CVSS0.00113EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 8:24 a.m.14 views

CVE-2025-20972

Improper verification of intent by broadcast receiver in Samsung Flow prior to version 4.9.17.6 allows local attackers to modify Samsung Flow configuration...

6.2CVSS0.00113EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 8:24 a.m.56 views

CVE-2025-20972

Samsung Flow is affected by an improper verification of intent in the broadcast receiver in versions prior to 4.9.17.6, enabling local attackers to modify the Flow configuration. The issue is documented across multiple sources, with PT-Security specifying the affected versions and a remediation: ...

6.2CVSS6.2AI score0.00113EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/02/25 4:23 p.m.6 views

CVE-2023-20972

creationtimestamp| type| source ---|---|--- 2025-02-25 16:23:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5322...

5.5CVSS5.5AI score0.00091EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/08/23 12:0 a.m.15 views

Fedora: Security Advisory (FEDORA-2024-c611359ae1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01539EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/05/01 3:24 a.m.3 views

SUSE CVE-2024-20972

unknown...

4.9CVSS8.5AI score0.01096EPSS
Exploits0References2
CVE
CVE
added 2024/02/17 1:50 a.m.125 views

CVE-2024-20972

CVE-2024-20972 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.35 and prior and 8.2.0 and prior . The vulnerability is described as easily exploitable with a high-privilege attacker over network protocols, potentially causing a hang or frequent...

4.9CVSS5.2AI score0.01096EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/02/17 1:50 a.m.24 views

CVE-2024-20972

...

4.9CVSS6.4AI score0.01096EPSS
Exploits0References1
Circl
Circl
added 2024/02/10 8:36 a.m.6 views

CVE-2024-20972

creationtimestamp| type| source ---|---|--- 2024-02-10 08:36:12+00:00| seen| https://t.me/ctinow/182474 2025-03-29 00:28:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9519...

4.9CVSS6.1AI score0.01096EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/01/17 12:0 a.m.31 views

Oracle MySQL Server 8.x <= 8.0.35, 8.1.x <= 8.2.0 Security Update (cpujan2024) - Linux

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

7.5CVSS6.1AI score0.03332EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/24 12:0 a.m.9 views

CVE-2023-20972

In btmvendorspecificevt of btmdevctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

5.1AI score0.00091EPSS
Exploits0References1
CVE
CVE
added 2023/03/24 12:0 a.m.75 views

CVE-2023-20972

CVE-2023-20972 affects Android 13. The issue is in btm_vendor_specific_evt within btm_devctl.cc, where a missing bounds check enables an out-of-bounds read that could cause local information disclosure. Exploitation is reported as requiring System privileges with LOCAL attack vector and no user i...

5.5CVSS5AI score0.00091EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/08/16 9:15 p.m.9 views

CVE-2018-20972

The companion-auto-update plugin before 3.2.1 for WordPress has CSRF...

8.8CVSS8.8AI score0.00649EPSS
Exploits0References1
CVE
CVE
added 2019/08/16 8:21 p.m.373 views

CVE-2018-20972

CVE-2018-20972 is a CSRF vulnerability in the WordPress plugin companion-auto-update prior to version 3.2.1. The connected sources consistently describe an insufficient verification of request origin that allows cross-site requests to perform unintended actions on behalf of an authenticated user....

8.8CVSS9.1AI score0.00649EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder