25 matches found
CVE-2026-21016
Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information...
CVE-2026-21016
creationtimestamp| type| source ---|---|--- 2026-05-10 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/samsung-products-multiple-vulnerabilities20260511...
CVE-2025-21016
Improper access control in PkgPredictorService prior to SMR Aug-2025 Release 1 in Chinese Android 13, 14, 15 and 16 allows local attackers to use the privileged APIs...
CVE-2025-21016
Improper access control in PkgPredictorService prior to SMR Aug-2025 Release 1 in Chinese Android 13, 14, 15 and 16 allows local attackers to use the privileged APIs...
CVE-2025-21016
creationtimestamp| type| source ---|---|--- 2025-08-06 04:50:42+00:00| seen| Telegram/ncbvN1oVWO5jqy6K1Eqh0s7uIKh9QrHJXvVu-bi9YsSiRPc...
CVE-2025-21016
The CVE-2025-21016 issue affects Samsung PkgPredictorService in Chinese Android 13–16 prior to SMR Aug-2025 Release 1. The root cause is improper access control, enabling local attackers to invoke privileged APIs. Impact is limited to local privilege escalation via these privileged APIs, with doc...
CVE-2025-21016
Improper access control in PkgPredictorService prior to SMR Aug-2025 Release 1 in Chinese Android 13, 14, 15 and 16 allows local attackers to use the privileged APIs...
CVE-2023-21016
In AccountTypePreference of AccountTypePreference.java, there is a possible way to mislead the user about accounts installed on the device due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo...
CVE-2018-21016
audiosampleentryAddBox at isomedia/boxcodebase.c in GPAC 0.7.1 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file...
CVE-2023-21016
creationtimestamp| type| source ---|---|--- 2025-03-17 19:47:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7843...
CVE-2024-21016
Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite component: LOV. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2024-21016
...
CVE-2024-21016
...
CVE-2023-21016
In AccountTypePreference of AccountTypePreference.java, there is a possible way to mislead the user about accounts installed on the device due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo...
CVE-2023-21016
In AccountTypePreference of AccountTypePreference.java, there is a possible way to mislead the user about accounts installed on the device due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo...
CVE-2023-21016
CVE-2023-21016 affects Android 13 via AccountTypePreference.java, where improper input validation can mislead users about installed accounts, enabling local denial of service with no extra privileges and no user interaction required. The issue is described across multiple feeds (NVD, Red Hat, PRi...
CVE-2023-21016
In AccountTypePreference of AccountTypePreference.java, there is a possible way to mislead the user about accounts installed on the device due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed fo...
Zoom Client for Meetings < 5.5.4 Vulnerability (ZSB-21016)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.5.4. It is, therefore, affected by a vulnerability as referenced in the ZSB-21016 advisory. - The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files...
CVE-2020-21016
CVE-2020-21016 affects D-Link DIR-846 devices with firmware 100A35. The vulnerability arises from insufficient input/argument validation in the HNAP1/control/SetGuestWLanSettings.php endpoint, enabling remote code execution as root over the network. What is vulnerable: the specific endpoint and i...
CVE-2021-21016
creationtimestamp| type| source ---|---|--- 2021-02-11 22:47:52+00:00| seen| https://t.me/cibsecurity/23475...