CVE-2026-21373

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...

CVE-2026-21373

creationtimestamp| type| source ---|---|--- 2026-04-06 17:07:38+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mitqu3wcgt2x 2026-04-06 17:32:14+00:00| seen| Telegram/nEWPFpjCLkD7NyFP9hUQCVBBOcgamDzuZpgMFfkUJdzCqg 2026-04-09 16:37:08+00:00| seen|...

CVE-2026-21373

CVE-2026-21373 describes memory corruption in the camera subsystem occurring when an IOCTL path accesses an output buffer without validating its size. This leads to a potential buffer over-read/overflow, as indicated by the NVD entry. The CVSS v3.1 vector shows a HIGH impact with local attack vec...

CVE-2024-21373

creationtimestamp| type| source ---|---|--- 2025-10-14 22:15:56+00:00| seen| Telegram/JLFuLnATxxC3f2G-49VL-1L8VNR56Cl7ORyYS1fra3gD5o...

CVE-2023-21373

In Telephony, there is a possible way for a guest user to change the preferred SIM due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2022-21373

Vulnerability in the Oracle Partner Management product of Oracle E-Business Suite component: Reseller Locator. Supported versions that are affected are 12.2.3-12.2.11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Partner...

CVE-2025-21373

Windows Installer Elevation of Privilege Vulnerability...

CVE-2025-21373 Windows Installer Elevation of Privilege Vulnerability

...

CVE-2025-21373 Windows Installer Elevation of Privilege Vulnerability

...

CVE-2025-21373

Technical details for CVE-2025-21373 are not provided in the supplied documents. Monitor for updates from Microsoft and the KB/MSRC references for affected product, impact and fixes.

CVE-2024-21373

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability...

CVE-2024-21373

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability...

CVE-2024-21373 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

...

KB5040948 - Description of the security update for SQL Server 2019 CU27: July 9, 2024

KB5040948 - Description of the security update for SQL Server 2019 CU27: July 9, 2024 Summary Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information File information Information...

CVE-2023-21373

CVE-2023-21373 affects Android Telephony: a missing permission check lets a guest user change the preferred SIM, enabling local elevation of privilege with no user interaction. Exploitation is local; impact is described as high (confidentiality, integrity, availability). No exploitation details i...

openSUSE 15 Security Update : nim (openSUSE-SU-2022:10101-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10101-1 advisory. Includes upstream security fixes for: boo1175333, CVE-2020-15693 httpClient is vulnerable to a CR-LF injection boo1175334, CVE-2020-15692...

OPENSUSE-SU-2022:10095-1 Security update for nim

This update for nim fixes the following issues: Includes upstream security fixes for: boo1175333, CVE-2020-15693 httpClient is vulnerable to a CR-LF injection boo1175334, CVE-2020-15692 mishandle of argument to browsers.openDefaultBrowser boo1175332, CVE-2020-15694 httpClient.get.contentLength...

CVE-2022-21373

CVE-2022-21373 affects Oracle E-Business Suite Partner Management (Reseller Locator). Affected versions are 12.2.3–12.2.11. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Partner Management, with human interaction required. Impacts include unauthor...

openSUSE: Security Advisory for nim (openSUSE-SU-2021:0618-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-21373

Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, "nimble refresh" fetches a list of Nimble packages over HTTPS by default. In case of error it falls back to a non-TLS URL http://irclogs.nim-lang.org/packages.json. An attacker...