31 matches found
CVE-2026-41410
REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-40520. Reason: This candidate is a duplicate of CVE-2026-40520. Notes: All CVE users should reference CVE-2026-40520 instead of this candidate...
CVE-2026-40520
FreePBX api module version 17.0.8 and prior contain a command injection vulnerability in the initiateGqlAPIProcess function where GraphQL mutation input fields are passed directly to shellexec without sanitization or escaping. An authenticated user with a valid bearer token can send a GraphQL...
CVE-2026-40520
creationtimestamp| type| source ---|---|--- 2026-04-21 04:16:20+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-40520 2026-04-21 15:16:16+00:00| published-proof-of-concept| Telegram/XbMH3UV0wobPxXOaFwFwC5FRUKFy5Z4xnFl9eFCQDFeiw...
EUVD-2023-40520
Malicious code in bioql PyPI...
MAL-2025-40520 Malicious code in yingyu-dianjin-erlingyiqilingqi-erlingyiqiyier (npm)
The package yingyu-dianjin-erlingyiqilingqi-erlingyiqiyier was found to contain malicious code...
CVE-2024-40520
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by adminconfigmark.php directly splicing and writing the user input data into incphotowatermarkconfig.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrar...
CVE-2021-40520
Airangel HSMX Gateway devices through 5.2.04 have Weak SSH Credentials...
CVE-2022-40520
creationtimestamp| type| source ---|---|--- 2025-04-09 19:48:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11140...
CVE-2022-40520
Memory corruption due to stack-based buffer overflow in Core...
CVE-2024-40520
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by adminconfigmark.php directly splicing and writing the user input data into incphotowatermarkconfig.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrar...
CVE-2023-40520
creationtimestamp| type| source ---|---|--- 2023-09-27 18:48:55+00:00| seen| https://t.me/cibsecurity/71115...
CVE-2023-40520
The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos saved to a temporary directory...
CVE-2023-40520
The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos saved to a temporary directory...
CVE-2023-40520
The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos saved to a temporary directory...
CVE-2023-40520
The CVE-2023-40520 issue concerns Apple platforms where an app could access edited photos saved in a temporary directory due to insufficient access control in Photos Storage. Affected products include tvOS, iOS, iPadOS (all before 17) and watchOS before 10. The underlying problem is improper acce...
CVE-2023-40520
The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos saved to a temporary directory...
CVE-2022-40520
Memory corruption due to stack-based buffer overflow in Core...
CVE-2022-40520
CVE-2022-40520 is described across multiple connected sources as a memory corruption due to a stack-based buffer overflow in Core. The vulnerability affects Qualcomm-related core components and is characterized by high impact to confidentiality, integrity, and availability (local access, low comp...
CVE-2022-40520 Stack based buffer overflow in Core
Memory corruption due to stack-based buffer overflow in Core...
Qualcomm Chipsets and Lenovo BIOS Get Security Updates to Fix Multiple Flaws
Qualcomm on Tuesday released patches to address multiple security flaws in its chipsets, some of which could be exploited to cause information disclosure and memory corruption. The five vulnerabilities -- tracked from CVE-2022-40516 through CVE-2022-40520 -- also impact Lenovo ThinkPad X13s...