Lucene search
K

311 matches found

CNVD
CNVD
added 2022/03/16 12:0 a.m.17 views

Apple iOS and Apple iPadOS Input Validation Error Vulnerability

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices and Apple iPadOS is an operating system for iPad tablets. Apple iOS and Apple iPadOS are vulnerable to an input validation error, which stems from The vulnerability is caused b...

7.5CVSS2.5AI score0.01102EPSS
Exploits0References1
CNVD
CNVD
added 2022/03/14 12:0 a.m.165 views

Xiaomi Router AX6000 Information Disclosure Vulnerability

Xiaomi Router AX6000 is a router from Xiaomi China. Xiaomi Router AX6000 1.0.56 previously had an information disclosure vulnerability that stemmed from a routing configuration error, which could be exploited by an attacker to download some of the files in Xiaomi Router AX6000...

5.3CVSS3.3AI score0.00747EPSS
Exploits0References1
CVE
CVE
added 2022/03/09 2:58 p.m.97 views

CVE-2022-26355

Summary: CVE-2022-26355 affects Citrix Federated Authentication Service (FAS) versions 7.17–10.6. When deployments configure the registration authority certificate’s private key to be stored in a TPM and PowerShell is used for that configuration, the private key is incorrectly stored in the Micro...

4.4CVSS4.8AI score0.00166EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/03/09 12:0 a.m.14 views

Google Android Information Disclosure Vulnerability

Google Android is a Linux-based open source operating system from Google. An information disclosure vulnerability exists in Google Android versions prior to 10, 11, and 12. The vulnerability arises from a configuration error in the network system or product during operation. An attacker could...

6.5CVSS5.9AI score0.00682EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/15 12:0 a.m.20 views

Samsung telephony information disclosure vulnerability (CNVD-2022-70759)

Samsung Telephony is a telephony feature of Samsung mobile devices. samsung telephony is vulnerable to an information disclosure vulnerability that results from a configuration error in the network system or product during operation. An attacker could use the vulnerability to obtain Cell Location...

5.5CVSS1.6AI score0.00104EPSS
Exploits0References1
Prion
Prion
added 2022/02/11 6:15 p.m.17 views

Design/Logic Flaw

In fastboot, there is a possible secure boot bypass due to a configuration error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android SoC Android ID: A-202018701...

7.2CVSS7.5AI score0.00128EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/02/11 5:40 p.m.33 views

CVE-2021-39672

In fastboot, there is a possible secure boot bypass due to a configuration error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android SoC Android ID: A-202018701...

8AI score0.00128EPSS
Exploits0References1
CVE
CVE
added 2022/02/11 5:40 p.m.152 views

CVE-2021-39672

CVE-2021-39672 describes a secure boot bypass in the Fastboot component due to a configuration error, enabling local elevation of privilege with no user interaction. The issue is documented in Android/AOSP risk tables and is listed under Amlogic components in the 2022 February security bulletin. ...

7.8CVSS7.7AI score0.00128EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/02/11 12:0 a.m.5 views

Samsung telephony 安全漏洞

Samsung Telephony is a telephony feature of Samsung mobile devices. samsung telephony is vulnerable to an information disclosure vulnerability that results from a configuration error in the network system or product during operation. An attacker could use the vulnerability to obtain Cell Location...

5.5CVSS5.6AI score0.00104EPSS
Exploits0References2
CNVD
CNVD
added 2022/02/10 12:0 a.m.27 views

Apache Superset Information Disclosure Vulnerability (CNVD-2022-14706)

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. Apache Superset suffers from an information disclosure vulnerability that originates from errors such as configuration during operation of a networked system or product. An attacker could exploit...

6.5CVSS6AI score0.07863EPSS
Exploits0References1
OSV
OSV
added 2022/02/01 12:0 a.m.17 views

ASB-A-202018701

In fastboot, there is a possible secure boot bypass due to a configuration error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.4AI score0.00128EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/27 12:0 a.m.48 views

Linux kernel memory leak vulnerability (CNVD-2022-68574)

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable to a memory leak vulnerability that stems from a configuration error in a networked system or product during operation. An attacker could use this vulnerability to gain...

5.5CVSS2.5AI score0.00227EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/27 12:0 a.m.14 views

Apache ShenYu Information Disclosure Vulnerability

Apache ShenYu is an asynchronous , high-performance , cross-language , responsive API gateway of the United States Apache Apache Foundation . An information disclosure vulnerability exists in Apache ShenYu versions 2.4.0 and 2.4.1, which arises from a configuration or other error in the operation...

7.5CVSS7.1AI score0.04306EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/01/25 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable to a memory leak vulnerability that stems from a configuration error in a networked system or product during operation. An attacker could use this vulnerability to gain...

5.5CVSS8.1AI score0.00227EPSS
Exploits0References14
CNVD
CNVD
added 2022/01/23 12:0 a.m.20 views

microweber information disclosure vulnerability (CNVD-2022-08215)

Microweber is an online store management system from the Microweber community in the United States that provides drag-and-drop functionality. The system includes modules for adding products, images, etc. microweber has an information disclosure vulnerability, which stems from errors in the...

7.5CVSS2.3AI score0.1201EPSS
Exploits1References1
CNVD
CNVD
added 2022/01/14 12:0 a.m.22 views

IBM Security Verify Information Disclosure Vulnerability

IBM Security Verify Access is a service from IBM USA that improves user access security. The service enables secure and simple access to platforms such as Web, mobile, IoT and cloud technologies through the use of risk-based access, single sign-on, integrated access management controls, identity...

5CVSS2.7AI score0.00969EPSS
Exploits0Affected Software2
CNVD
CNVD
added 2022/01/11 12:0 a.m.13 views

Google Android elevation of privilege vulnerability (CNVD-2022-15193)

Google Android is a Linux-based open source operating system from Google. A security vulnerability exists in Pixel Display/graphics in Google Android, which arises from a configuration or other error in the operation of a networked system or product. An attacker could exploit the vulnerability to...

7CVSS7AI score0.00089EPSS
Exploits0References1
CNVD
CNVD
added 2022/01/11 12:0 a.m.14 views

Google Android logic flaw vulnerability

Google Android is a Linux-based open source operating system from Google, Inc. A security vulnerability exists in Google Android, which stems from a configuration error in the network system or product during operation. An attacker could exploit the vulnerability to cause a local privilege...

7.2CVSS4.1AI score0.00128EPSS
Exploits0
CNVD
CNVD
added 2022/01/11 12:0 a.m.20 views

Google Android Code Execution Vulnerability (CNVD-2022-06898)

Google Android is a Linux-based open source operating system from Google, Inc. A security vulnerability exists in Google Android, which stems from a configuration error in the network system or product during operation. An attacker could exploit the vulnerability to cause a local privilege...

4.6CVSS4.5AI score0.00115EPSS
Exploits0
CNVD
CNVD
added 2022/01/11 12:0 a.m.18 views

Google Android Information Disclosure Vulnerability (CNVD-2022-05475)

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that stems from a configuration error in the network system or product during operation. An attacker could use the vulnerability to obtain sensiti...

4.4CVSS2.3AI score0.00115EPSS
Exploits0References1
Rows per page
Query Builder