Lucene search
K

39 matches found

Positive Technologies
Positive Technologies
added 2023/02/09 12:0 a.m.5 views

PT-2023-13247 · Unknown · Trusted Application Environment

Name of the Vulnerable Software and Affected Versions: Trusted Application Environment affected versions not specified Description: The issue is related to memory corruption due to use after free in the trusted application environment. Recommendations: At the moment, there is no information about...

7.8CVSS7.9AI score0.00122EPSS
Exploits0References4
NVD
NVD
added 2021/10/20 7:15 a.m.25 views

CVE-2021-1932

Improper access control in trusted application environment can cause unauthorized access to CDSP or ADSP VM memory with either privilege in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired...

8.4CVSS0.00159EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/10/20 6:31 a.m.34 views

CVE-2021-1932

Improper access control in trusted application environment can cause unauthorized access to CDSP or ADSP VM memory with either privilege in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired...

8.4CVSS8.6AI score0.00159EPSS
Exploits0References1
CVE
CVE
added 2021/10/20 6:31 a.m.53 views

CVE-2021-1932

CVE-2021-1932 is a vulnerability reported in Qualcomm closed-source components affecting Snapdragon platforms. The issue is described as improper access control in the trusted application environment, allowing unauthorized memory access to CDSP or ADSP VM memory with either privilege. Impact is r...

8.4CVSS7.6AI score0.00159EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/09/08 12:0 a.m.32 views

Cisco IOS XE Software IOx Application Environment Path Traversal (cisco-sa-iox-pt-hWGcPf7g)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the Cisco IOx application hosting environment of multiple Cisco platforms could allow an authenticated, remote attacker to conduct directory traversal attacks and read and write file...

6.5CVSS7.4AI score0.02671EPSS
Exploits1References5
NVD
NVD
added 2020/11/16 9:15 p.m.24 views

CVE-2020-27486

Garmin Forerunner 235 before 8.20 is affected by: Buffer Overflow. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ application to the ConnectIQ store. The ConnectIQ program interpreter trusts the string length...

9.9CVSS9.5AI score0.01859EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2020/07/28 12:0 a.m.36 views

Cisco IOx Application Environment for IOS Software for Cisco Industrial Routers Multiple Vulnerabilities (cisco-sa-ios-iot-gos-vuln-s9qS8kYL)

According to its self-reported version, Cisco IOS Software is affected by multiple vulnerabilities in the IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000. Attackers can exploit these in...

8.8CVSS8.4AI score0.00703EPSS
Exploits0References5
NVD
NVD
added 2020/06/03 6:15 p.m.16 views

CVE-2020-3237

A vulnerability in the Cisco Application Framework component of the Cisco IOx application environment could allow an authenticated, local attacker to overwrite arbitrary files in the virtual instance that is running on the affected device. The vulnerability is due to insufficient path restriction...

6.3CVSS6.2AI score0.00351EPSS
Exploits0References1
NVD
NVD
added 2020/06/03 6:15 p.m.16 views

CVE-2020-3199

Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 that are running Cisco IOS Software could allow an attacker to cause a denial of service DoS condition...

8.8CVSS8.8AI score0.00682EPSS
Exploits0References1
Prion
Prion
added 2020/06/03 6:15 p.m.17 views

Design/Logic Flaw

Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 that are running Cisco IOS Software could allow an attacker to cause a denial of service DoS condition...

4.8CVSS8.3AI score0.00703EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/03 5:56 p.m.18 views

CVE-2020-3257 Cisco IOx Application Environment for IOS Software for Cisco Industrial Routers Vulnerabilities

Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 that are running Cisco IOS Software could allow an attacker to cause a denial of service DoS condition...

8.1CVSS8.5AI score0.00703EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/06/03 5:45 p.m.7 views

CVE-2020-3199 Cisco IOx Application Environment for IOS Software for Cisco Industrial Routers Vulnerabilities

Multiple vulnerabilities in the Cisco IOx application environment of Cisco 809 and 829 Industrial Integrated Services Routers Industrial ISRs and Cisco 1000 Series Connected Grid Routers CGR1000 that are running Cisco IOS Software could allow an attacker to cause a denial of service DoS condition...

8.1CVSS7.9AI score0.00682EPSS
Exploits0References1
Prion
Prion
added 2019/10/25 6:15 p.m.15 views

Design/Logic Flaw

In IntelliSpace Perinatal, Versions K and prior, a vulnerability within the IntelliSpace Perinatal application environment could enable an unauthorized attacker with physical access to a locked application screen, or an authorized remote desktop session host application user to break-out from the...

7.2CVSS6.6AI score0.00404EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/10/03 12:0 a.m.22 views

The vulnerability in the IOx application environment for the Cisco IOS operating system allows a hacker to elevate their privileges to the root level.

The vulnerability in the IOx application environment for the Cisco IOS operating system is related to errors during role-based access control checks. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level...

9.9CVSS5.5AI score0.0235EPSS
Exploits0References2Affected Software1
myhack58
myhack58
added 2015/05/20 12:0 a.m.22 views

IIS the new UNICODE vulnerability WideChar and MultiByte character conversion issues-vulnerability warning-the black bar safety net

0 2 year summary has not been published a little windows features! These characteristics of is my summary of the security model of“vulnerability”, as long as we go in search of such an environment or wait for such an environment. The following characteristics for early IIS has not found the...

0.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/11/16 5:51 p.m.7 views

pam: pam_namespace executes namespace.init with service's environment

pamnamespace.c in the pamnamespace module in Linux-PAM aka pam before 1.1.3 uses the environment of the invoking application or service during execution of the namespace.init script, which might allow local users to gain privileges by running a setuid program that relies on the pamnamespace PAM...

6.9CVSS6AI score0.00416EPSS
Exploits0References4
Prion
Prion
added 2009/01/14 2:30 a.m.19 views

Design/Logic Flaw

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows remote authenticated users to affect confidentiality via unknown vectors. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not comment...

3.5CVSS5.4AI score0.01341EPSS
Exploits1References7Affected Software2
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.21 views

CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass: Web Requests Can Still Set APP_ENV/APP_DEBUG via parse_str/SAPI Argv Mismatch

More info at https://symfony.com/cve-2026-46626...

7.3CVSS5.8AI score0.63422EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.32 views

CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass: Web Requests Can Still Set APP_ENV/APP_DEBUG via parse_str/SAPI Argv Mismatch

More info at https://symfony.com/cve-2026-46626...

7.3CVSS5.8AI score0.63422EPSS
Exploits0Affected Software1
Rows per page
Query Builder