21 matches found
CVE-2026-21019
Improper input validation in FacAtFunction in Galaxy Watch prior to SMR May-2026 Release 1 allows local attacker to execute arbitrary code with system privilege...
CVE-2026-21019
CVE-2026-21019 affects Galaxy Watch; the issue is improper input validation in the FacAtFunction component, enabling a local attacker to execute arbitrary code with system privileges. The descriptor notes local access, high impact on confidentiality, integrity, and availability. A Samsung securit...
CVE-2026-21019
creationtimestamp| type| source ---|---|--- 2026-05-10 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/samsung-products-multiple-vulnerabilities20260511...
CVE-2025-21019
Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability...
CVE-2025-21019
Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability...
CVE-2025-21019
Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability...
CVE-2018-21019
Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an unauthenticated attacker to read the application's error log via components/api.py...
CVE-2023-38107
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...
CVE-2023-38107 Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...
CVE-2023-38107
CVE-2023-38107 is a Foxit PDF Reader/Editor vulnerability in the handling of Annotation objects. The flaw stems from not validating the existence of an object before performing operations, allowing an attacker to achieve remote code execution in the context of the current process. Exploitation re...
CVE-2024-21019
...
CVE-2024-21019
...
CVE-2023-21019
In ih264einitprocctxt of ih264eprocess.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Andro...
CVE-2023-21019
In ih264einitprocctxt of ih264eprocess.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Andro...
CVE-2023-21019
CVE-2023-21019 affects Android 13 components, specifically a heap buffer overflow in ih264e_init_proc_ctxt within ih264e_process.c that can cause an out-of-bounds read and local information disclosure without requiring user interaction or elevated privileges. The vulnerability is documented with ...
Zoom Client for Meetings < 5.8.4 Vulnerability (ZSB-21019)
The version of Zoom Client for Meetings installed on the remote host is prior to 5.8.4. It is, therefore, affected by a vulnerability as referenced in the ZSB-21019 advisory. - A buffer overflow vulnerability was discovered in the products listed in the Affected Products'' section of this bulleti...
CVE-2021-21019
creationtimestamp| type| source ---|---|--- 2021-02-11 22:47:48+00:00| seen| https://t.me/cibsecurity/23471...
CVE-2021-21019
Magento versions 2.4.1 and earlier, 2.4.0-p1 and earlier and 2.3.6 and earlier are vulnerable to XML injection in the Widgets module. Successful exploitation could lead to arbitrary code execution by an authenticated attacker. Access to the admin console is required for successful exploitation...
CVE-2021-21019
CVE-2021-21019 (Magento) is a XML injection vulnerability in the Widgets module affecting Magento 2.4.1 and earlier (2.4.0-p1, 2.3.6 and earlier). Successful exploitation could lead to arbitrary code execution by an authenticated attacker with admin console access. Affected versions have patches:...
CVE-2018-21019
Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an unauthenticated attacker to read the application's error log via components/api.py...