17 matches found
mediatek-mt8365-preloader-exploit
Analysis of Preloader Vulnerabilities in MediaTek MT8365 MT81...
CVE-2025-26468
CyberData 011209 Intercom exposes features that could allow an unauthenticated to gain access and cause a denial-of-service condition or system disruption...
CVE-2025-26468 CyberData 011209 SIP Emergency Intercom Missing Authentication for Critical Function
CyberData 011209 Intercom exposes features that could allow an unauthenticated to gain access and cause a denial-of-service condition or system disruption...
CVE-2025-26468
CVE-2025-26468 affects CyberData Intercom (SIP Emergency Intercom). Multiple connected sources describe an access control error that could let an unauthenticated actor access the system (including the Web Interface via an alternate path) and potentially cause a denial-of-service or system disrupt...
CVE-2025-26468 CyberData 011209 SIP Emergency Intercom Missing Authentication for Critical Function
CyberData 011209 Intercom exposes features that could allow an unauthenticated to gain access and cause a denial-of-service condition or system disruption...
CVE-2025-26468
creationtimestamp| type| source ---|---|--- 2025-06-05 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-155-01 2025-06-09 22:32:34+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17802...
CVE-2022-26468
In preloader usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...
CVE-2024-26468
A DOM based cross-site scripting XSS vulnerability in the component index.html of jstrieb/urlpages before commit 035b647 allows attackers to execute arbitrary Javascript via sending a crafted URL...
CVE-2024-26468
CVE-2024-26468 describes a DOM-based XSS in the jstrieb/urlpages project, affecting the code path in the index.html component prior to commit 035b647. An attacker can trigger arbitrary Javascript by sending a crafted URL. The available sources consistently cite the same issue without extending in...
CVE-2024-26468
A DOM based cross-site scripting XSS vulnerability in the component index.html of jstrieb/urlpages before commit 035b647 allows attackers to execute arbitrary Javascript via sending a crafted URL...
CVE-2023-26468
creationtimestamp| type| source ---|---|--- 2023-02-24 03:18:39+00:00| seen| https://t.me/cibsecurity/58840...
CVE-2023-26468
Cerebrate 1.12 is affected by CVE-2023-26468 due to improper handling of organisation_id when creating API keys. The issue potentially allows API key misuse or unauthorized access (per Red Hat/PRION/PT-SECURITY entries), with high impact indicators (CVE CVSS 9.1, Confidentiality/Integrity loss). ...
CVE-2023-26468
Cerebrate 1.12 does not properly consider organisationid during creation of API keys...
CVE-2022-26468
creationtimestamp| type| source ---|---|--- 2022-09-06 22:13:22+00:00| seen| https://t.me/cibsecurity/49335...
CVE-2022-26468
In preloader usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...
CVE-2022-26468
CVE-2022-26468: Out-of-bounds write in the preloader (usb) on MediaTek devices due to a missing bounds check. This can lead to local privilege escalation with physical access and requires user interaction for exploitation. Patch ID ALPS07168125/Issue ALPS07168125 appears in the record; no specifi...
Microsoft Jet Engine MDB file ColumnName buffer overflow
Added: 11/23/2007 CVE: CVE-2007-6026 BID: 26468 OSVDB: 44880 Background The Microsoft Jet Database Engine provides data access functionality for a number of applications. Problem A buffer overflow vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user opens...