23 matches found
CVE-2023-21402
In MMUUnmapPages of mmucommon.c, there is a possible out of bounds read due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2022-21402
Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...
CVE-2025-21402
Microsoft Office OneNote Remote Code Execution Vulnerability...
CVE-2025-21402 Microsoft Office OneNote Remote Code Execution Vulnerability
...
CVE-2025-21402 Microsoft Office OneNote Remote Code Execution Vulnerability
...
CVE-2025-21402
CVE-2025-21402 is a Microsoft Office OneNote remote code execution vulnerability. The NVD entry notes a HIGH risk with CVSS 3.1: Local attack vector, low attack complexity, user interaction required, and impact to confidentiality, integrity, and availability. Multiple connected sources corroborat...
CVE-2025-21402
creationtimestamp| type| source ---|---|--- 2025-01-14 17:29:48+00:00| seen| https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review 2025-01-14 18:23:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpuoev7q52n 2025-01-14 19:51:37+00:00| seen|...
CVE-2024-21402
creationtimestamp| type| source ---|---|--- 2024-02-13 20:36:57+00:00| seen| https://t.me/ctinow/184163...
CVE-2024-21402
Microsoft Outlook Elevation of Privilege Vulnerability...
CVE-2024-21402 Microsoft Outlook Elevation of Privilege Vulnerability
...
CVE-2024-21402
CVE-2024-21402 is a Microsoft Outlook Elevation of Privilege vulnerability. The CVE affects Outlook as part of Microsoft Office/365 suites and is triggered locally, enabling a low-privileged user to escalate to higher privileges on the affected system. The base CVSSv3.1 score is 7.1 (HIGH) with P...
CVE-2023-21402
creationtimestamp| type| source ---|---|--- 2023-12-24 09:41:17+00:00| seen| https://t.me/ctinow/158965...
CVE-2023-21402
CVE-2023-21402 affects the PowerVR GPU driver (Imagination Technologies) in Android/ChromeOS via the MMU_UnmapPages() function in mmu_common.c. The issue is an out-of-bounds read caused by improper input validation, enabling local escalation of privilege in the kernel with no user interaction req...
VulnCheck KEV: CVE-2021-21402
Jellyfin is a Free Software Media System. In Jellyfin before version 10.7.1, with certain endpoints, well crafted requests will allow arbitrary file read from a Jellyfin server's file system. This issue is more prevalent when Windows is used as the host OS. Servers that are exposed to the...
CVE-2022-21402
creationtimestamp| type| source ---|---|--- 2022-01-19 14:41:57+00:00| seen| https://t.me/cibsecurity/35856...
CVE-2022-21402
Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...
CVE-2022-21402
Vulnerability in the Oracle Communications Operations Monitor product of Oracle Communications component: Mediation Engine. Supported versions that are affected are 3.4, 4.2, 4.3, 4.4 and 5.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...
CVE-2022-21402
Oracle Communications Operations Monitor (Mediation Engine) is affected in CVE-2022-21402 for versions 3.4, 4.2, 4.3, 4.4 and 5.0. The vulnerability enables a high-privilege attacker with network access via HTTP to compromise data confidentiality and integrity, with unauthorized read/update/delet...
Exploit for Path Traversal in Jellyfin
CVE-2021-21402: Jellyfin Arbitrary File Reading Vulnerability...
Exploit for Path Traversal in Jellyfin
CVE-2021-21402-Jellyfin-Automatic File R...