24 matches found
CVE-2026-27929
Time-of-check time-of-use toctou race condition in Windows LUAFV allows an authorized attacker to elevate privileges locally...
CVE-2026-27929 Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability
...
CVE-2026-27929
creationtimestamp| type| source ---|---|--- 2026-04-14 15:49:19+00:00| seen| https://www.thezdi.com/blog/2026/4/14/the-april-2026-security-update-review 2026-04-14 20:10:01+00:00| seen| Telegram/xx6YrQ48nE7eM7nlcnP-YokmYiL7wtsOzbOXntpgEs8Ls 2026-04-15 06:53:38+00:00| seen|...
CVE-2022-27929
Pexip Infinity 27.x before 27.3 allows remote attackers to trigger a software abort via HTTP...
CVE-2020-27929
A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...
CVE-2025-27929
Unauthenticated attackers can retrieve full list of users associated with arbitrary accounts...
CVE-2025-27929
Unauthenticated attackers can retrieve full list of users associated with arbitrary accounts...
CVE-2025-27929 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
Unauthenticated attackers can retrieve full list of users associated with arbitrary accounts...
CVE-2025-27929 Growatt Cloud portal Authorization Bypass Through User-Controlled Key
Unauthenticated attackers can retrieve full list of users associated with arbitrary accounts...
CVE-2025-27929
CVE-2025-27929 affects Growatt Cloud Applications. The connected sources confirm an unauthenticated attacker can retrieve the full list of users associated with arbitrary accounts, implying a potential authorization/identity exposure vulnerability. Public details specifically mention Growatt Clou...
CVE-2025-27929
creationtimestamp| type| source ---|---|--- 2025-04-15 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-04 2025-04-15 22:44:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmv5o2a6ux2i 2025-04-15 22:55:54+00:00| seen|...
CVE-2024-27929
creationtimestamp| type| source ---|---|--- 2024-03-05 18:27:10+00:00| seen| https://t.me/ctinow/200549 2024-03-05 18:27:16+00:00| seen| https://t.me/ctinow/200555...
CVE-2024-27929
SixLabors.ImageSharp is affected by a heap-use-after-free in InitializeImage() within PngDecoderCore.cs when processing specially crafted PNG files, potentially leading to information disclosure. The issue affects ImageSharp versions prior to 3.1.3 and 2.1.7. Remediation in the public CVE context...
CVE-2024-27929 Use After Free in SixLabors.ImageSharp
ImageSharp is a managed, cross-platform, 2D graphics library. A heap-use-after-free flaw was found in ImageSharp's InitializeImage function of PngDecoderCore.cs file. This vulnerability is triggered when an attacker passes a specially crafted PNG image file to ImageSharp for conversion, potential...
CVE-2023-27929
Summary of CVE-2023-27929 : The vulnerability is an out-of-bounds read fixed by earlier input validation updates. Affected Apple platforms include macOS Ventura 13.3; tvOS 16.4; iOS 16.4; iPadOS 16.4; and watchOS 9.4. Impact is memory disclosure potential when processing a maliciously crafted ima...
CVE-2023-27929
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. Processing a maliciously crafted image may result in disclosure of process memory...
CVE-2023-27929
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. Processing a maliciously crafted image may result in disclosure of process memory...
CVE-2022-27929
CVE-2022-27929 affects Pexip Infinity 27.x (27.0–27.2) with a faulty input validation path that allows remote attackers to trigger a software abort via HTTP, causing denial of service. The vulnerability is caused by an input validation error in HTTP handling, as reported across multiple sources (...
CVE-2020-27929
A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...
CVE-2020-27929
A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.4.9. A user may send video in Group FaceTime calls without knowing that they have done so...