12 matches found
EUVD-2025-47020
Malicious code in jaja-donat34-sukiwir npm...
Linux Distros Unpatched Vulnerability : CVE-2021-47020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: soundwire: stream: fix memory leak in stream config error path When stream config is failed,...
CVE-2025-47020 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)
Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...
CVE-2024-47020
Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ABL component, A-331966488...
CVE-2024-47020
CVE-2024-47020 affects Google Pixel devices running Android prior to the 2024-10-05 patch level, with the vulnerability classified as Information Disclosure in the ABL component (A-331966488). Public descriptors identify an information disclosure bug in ABL on Pixel hardware, but the available do...
CVE-2024-47020
Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ABL component, A-331966488...
CVE-2021-47020
creationtimestamp| type| source ---|---|--- 2024-03-01 06:42:18+00:00| seen| https://t.me/ctinow/197315...
CVE-2021-47020
CVE-2021-47020 is a Linux kernel vulnerability in the SoundWire subsystem. The issue is a memory leak in the stream config error path for soundwire: stream: when stream config fails, the master runtime releases slave_runtimes from the slave_rt_list but the slave runtime is not added to that list ...
CVE-2023-47020
creationtimestamp| type| source ---|---|--- 2024-02-08 17:32:00+00:00| seen| https://t.me/ctinow/181498 2024-02-11 12:13:15+00:00| seen| https://t.me/arpsyndicate/3357 2024-03-02 12:41:42+00:00| seen| https://t.me/ctinow/198335...
CVE-2023-47020
Multiple Cross-Site Request Forgery CSRF chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user account creation and adding the user to an administrator group. This is exploited by an undisclosed function in the WSDL that...
CVE-2023-47020
CVE-2023-47020 affects NCR Terminal Handler v1.5.1. A CSRF chaining flaw allows an attacker to escalate privileges by crafting a request that creates a user and adds them to the administrator group, exploiting an undisclosed WSDL function that lacks security controls and can accept custom content...
CVE-2023-47020
Multiple Cross-Site Request Forgery CSRF chaining in NCR Terminal Handler v.1.5.1 allows privileges to be escalated by an attacker through a crafted request involving user account creation and adding the user to an administrator group. This is exploited by an undisclosed function in the WSDL that...