Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3721 matches found

Prion
Prionadded 2020/09/17 7:15 p.m.8 views

Memory corruption

In Pixel's use of the Catpipe library, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.2CVSS7.8AI score0.00015EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2020/09/17 7:15 p.m.0 views

CVE-2020-0430

In skbheadlen of /include/linux/skbuff.h, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

7.8CVSS7.7AI score0.0002EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2020/09/17 7:15 p.m.15 views

CVE-2020-0429

In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

6.7CVSS7AI score0.00019EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2020/09/17 7:15 p.m.24 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS7AI score0.00025EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2020/09/17 7:15 p.m.4 views

CVE-2020-0427

In createpinctrl of core.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-1405501...

5.5CVSS8.6AI score0.00171EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2020/09/17 7:15 p.m.40 views

CVE-2020-0427

In createpinctrl of core.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-1405501...

5.5CVSS7AI score0.00171EPSS
Exploits0References4
Prion
Prionadded 2020/09/17 7:15 p.m.13 views

Command injection

In the FPC TrustZone fingerprint App, there is a possible invalid command handler due to an exposed test feature. This could lead to local escalation of privilege in the TEE, with System execution privileges required. User interaction is not needed for exploitation.Product: AndroidVersions: Andro...

7.2CVSS6.7AI score0.00013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2020/09/17 7:15 p.m.1 views

CVE-2020-0428

In CamX code, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges required. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-123999783...

6.4CVSS5.6AI score0.00015EPSS
Exploits0References2
Prion
Prionadded 2020/09/17 7:15 p.m.13 views

Memory corruption

In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

4.6CVSS6.7AI score0.00019EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2020/09/17 7:15 p.m.1 views

CVE-2020-0432

In skbtomamac of networking.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.8CVSS7.8AI score0.00033EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2020/09/17 7:15 p.m.39 views

CVE-2020-0431

In kbdkeycode of keyboard.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.7CVSS7AI score0.00036EPSS
Exploits0References3
Prion
Prionadded 2020/09/17 7:15 p.m.10 views

Design/Logic Flaw

In manifest files of the SmartSpace package, there is a possible tapjacking vector due to a missing permission check. This could lead to local escalation of privilege and account hijacking with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

9.3CVSS7.6AI score0.00034EPSS
Exploits0References1
Prion
Prionadded 2020/09/17 7:15 p.m.12 views

Race condition

In CamX code, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges required. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-123999783...

4.4CVSS6.6AI score0.00015EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2020/09/17 7:15 p.m.2 views

CVE-2020-0431

In kbdkeycode of keyboard.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.7CVSS8.6AI score0.00036EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2020/09/17 7:15 p.m.3 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS5.6AI score0.00025EPSS
Exploits0References2
Prion
Prionadded 2020/09/17 7:15 p.m.16 views

Out-of-bounds

In createpinctrl of core.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-1405501...

2.1CVSS5.5AI score0.00171EPSS
Exploits0References6Affected Software3
OSV
OSVadded 2020/09/17 7:15 p.m.0 views

UBUNTU-CVE-2020-0427

In createpinctrl of core.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-1405501...

5.5CVSS6.8AI score0.00171EPSS
Exploits0References5
OSV
OSVadded 2020/09/17 7:15 p.m.0 views

UBUNTU-CVE-2020-0432

In skbtomamac of networking.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.8CVSS7AI score0.00033EPSS
Exploits0References4
OSV
OSVadded 2020/09/17 7:15 p.m.1 views

UBUNTU-CVE-2020-0429

In l2tpsessiondelete and related functions of l2tpcore.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

6.7CVSS6.9AI score0.00019EPSS
Exploits0References5
Cvelist
Cvelistadded 2020/09/17 6:46 p.m.12 views

CVE-2020-0434

In Pixel's use of the Catpipe library, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

8.5AI score0.00015EPSS
Exploits0References1
Rows per page
Query Builder