Lucene search
K

215 matches found

OSV
OSV
added 2020/03/24 6:15 p.m.3 views

CVE-2020-10852

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. There is a stack overflow in display driver. The Samsung ID is SVE-2019-15877 January 2020...

7.8CVSS7.2AI score0.00135EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 6:15 p.m.5 views

CVE-2020-10845

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. There is a race condition leading to a use-after-free in MTP. The Samsung ID is SVE-2019-16520 February 2020...

6.4CVSS6.6AI score0.001EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 6:15 p.m.4 views

CVE-2020-10844

An issue was discovered on Samsung mobile devices with O8.x, P9.x, and Q10.0 software. There is an out-of-bounds read vulnerability in media.audiopolicy. The Samsung ID is SVE-2019-16333 February 2020...

6.5CVSS6.6AI score0.0039EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 6:15 p.m.2 views

CVE-2020-10831

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. Attackers can trigger an update to arbitrary touch-screen firmware. The Samsung ID is SVE-2019-16013 March 2020...

7.5CVSS5.9AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 6:15 p.m.2 views

CVE-2019-20535

An issue was discovered on Samsung mobile devices with O8.x and P9.0 software. A connection to a new Bluetooth devices can be established from the lock screen. The Samsung ID is SVE-2019-15533 December 2019...

6.2CVSS5.8AI score0.00133EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 6:15 p.m.2 views

CVE-2019-20532

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. Attackers can access the Developer options without authentication. The Samsung ID is SVE-2019-15800 December 2019...

5.3CVSS6.1AI score
Exploits0References1
OSV
OSV
added 2020/03/10 8:15 p.m.3 views

CVE-2020-0037

In rwi93smsetreadonly of rwi93.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over NFC with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...

7.5CVSS7.2AI score
Exploits0References1
OSV
OSV
added 2020/03/10 8:15 p.m.2 views

DEBIAN-CVE-2020-0034

In vp8decodeframe of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product...

7.5CVSS6.1AI score0.01897EPSS
Exploits0References1
OSV
OSV
added 2020/03/10 8:15 p.m.2 views

ALPINE-CVE-2020-0034

In vp8decodeframe of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product...

7.5CVSS6.1AI score0.01897EPSS
Exploits0References1
OSV
OSV
added 2020/03/10 8:15 p.m.3 views

UBUNTU-CVE-2020-0034

In vp8decodeframe of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product...

7.5CVSS6.5AI score0.01897EPSS
Exploits0References3
OSV
OSV
added 2020/02/13 3:15 p.m.3 views

CVE-2020-0026

In Parcel::continueWrite of Parcel.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1...

7.8CVSS7.2AI score
Exploits0References1
OSV
OSV
added 2020/02/13 3:15 p.m.3 views

CVE-2020-0015

In onCreate of CertInstaller.java, there is a possible way to overlay the Certificate Installation dialog by a malicious application. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

7.8CVSS7.2AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2020/02/13 3:15 p.m.3 views

CVE-2020-0022

In reassembleanddispatch of packetfragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS7.8AI score0.05379EPSS
Exploits8References4
CNVD
CNVD
added 2020/02/09 12:0 a.m.2 views

Google Android System elevation of privilege vulnerability (CNVD-2020-04555)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the System component of Google Android 8.0, 8.1, 9, and 10. No details of the vulnerability are available at this time...

7.8CVSS7.2AI score0.00181EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/09 12:0 a.m.4 views

Google Android System elevation of privilege vulnerability (CNVD-2020-07210)

Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An elevation of privilege vulnerability exists in the System component of Google Android 8.0, 8.1, 9, and 10. No details of the vulnerability are available at this time...

7.8CVSS7.2AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 7:15 p.m.1 views

CVE-2020-0006

In rwi93sendcmdwritesingleblock of rwi93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC server with no additional execution privileges needed. User interaction is needed for exploitation. Product...

6.5CVSS7AI score
Exploits0References1
OSV
OSV
added 2020/01/08 7:15 p.m.6 views

CVE-2020-0008

In LowEnergyClient::MtuChangedCallback of lowenergyclient.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions:...

4.7CVSS6.6AI score0.00117EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 7:15 p.m.3 views

CVE-2020-0002

In ih264dinitdecoder of ih264dapi.c, there is a possible out of bounds write due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation Product: Android Versions: Android-8.0, Android-8.1, Android-9...

8.8CVSS7.6AI score0.01387EPSS
Exploits0References1
OSV
OSV
added 2020/01/08 7:15 p.m.4 views

CVE-2020-0001

In getProcessRecordLocked of ActivityManagerService.java isolated apps are not handled correctly. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-8.0, Android-8.1,...

7.8CVSS5.9AI score0.00399EPSS
Exploits0References1
CNVD
CNVD
added 2020/01/07 12:0 a.m.4 views

Google Android System Information Disclosure Vulnerability (CNVD-2020-02988)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An information disclosure vulnerability exists in the System component of Google Android 8.0, 8.1, 9, and 10. Attackers can take advantage of this vulnerability to...

5.5CVSS6.2AI score0.00168EPSS
Exploits0References1
Rows per page
Query Builder