Lucene search
K

271 matches found

CNVD
CNVD
added 2025/09/08 12:0 a.m.4 views

Google Android elevation of privilege vulnerability (CNVD-2025-29703)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to a logic error in the updateState function in ContentProtectionTogglePreferenceController.java, which can be exploited by an attacker to elevate...

7.8CVSS7.2AI score0.00079EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/06 7:31 p.m.18 views

CVE-2025-32345

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

7.8CVSS6.8AI score0.00085EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 7:15 p.m.3 views

CVE-2025-32345

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

7.8CVSS5.9AI score0.00085EPSS
Exploits0References2
NVD
NVD
added 2025/09/04 7:15 p.m.5 views

CVE-2025-32345

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

7.8CVSS0.00085EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/04 6:33 p.m.3 views

CVE-2025-32345

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

6.3AI score0.00085EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/04 6:33 p.m.6 views

CVE-2025-32345

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

0.00085EPSS
Exploits0References2
NVD
NVD
added 2025/09/04 6:15 p.m.6 views

CVE-2025-26435

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

7.8CVSS0.00079EPSS
Exploits0References2
OSV
OSV
added 2025/09/04 6:15 p.m.5 views

CVE-2025-26435

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

7.8CVSS5.9AI score0.00079EPSS
Exploits0References2
CVE
CVE
added 2025/09/04 5:11 p.m.440 views

CVE-2025-26435

CVE-2025-26435 affects ContentProtectionTogglePreferenceController.java and is due to a logic error in updateState that could allow a secondary user to disable the primary user's app scanning setting, enabling local privilege escalation without additional privileges or user interaction. The entry...

7.8CVSS6.3AI score0.00079EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/09/04 5:11 p.m.9 views

CVE-2025-26435

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

0.00079EPSS
Exploits0References2
OSV
OSV
added 2025/09/01 12:0 a.m.10 views

ASB-A-409318132

In updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary user's deceptive app scanning setting due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges...

7.8CVSS6.8AI score0.00085EPSS
Exploits0References2
OSV
OSV
added 2025/07/25 1:15 p.m.2 views

UBUNTU-CVE-2025-38362

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null pointer check for getfirstactivedisplay The function modhdcphdcp1enableencryption calls the function getfirstactivedisplay, but does not check its return value. The return value is a null pointer if the...

5.5CVSS6.1AI score0.00107EPSS
Exploits0References40
Akamai Blog
Akamai Blog
added 2025/07/15 7:0 p.m.7 views

AI and LLM Bot Management Has Become a Business-Critical Issue: Do It Right

AI bots, agents, and LLM scrapers all want your content. Here’s how to manage them so that they help, not hinder, your business...

7AI score
Exploits0
Akamai Blog
Akamai Blog
added 2025/07/10 1:0 p.m.4 views

How AI Bots Are Rewriting the Rules of Publishing

See how AI bots impact publishers and how Akamai helps you protect, control, and monetize your content as AI reshapes how people find information...

7.4AI score
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.3 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fixed a slab-use-after-free issue in hdcpwork Why A slab-use-after-free issue was reported when HDCP was destroyed, but the propertyvalidatedwork queue was still running. How The delayed work was canceled when th...

7.8CVSS6.4AI score0.00183EPSS
Exploits0References3
F5 Networks
F5 Networks
added 2025/06/02 5:47 p.m.11 views

K000151646: Apache HTTP server vulnerability CVE-2025-31492

Security Advisory Description modauthopenidc is an OpenID Certified authentication and authorization module for the Apache 2.x HTTP server that implements the OpenID Connect Relying Party functionality. Prior to 2.4.16.11, a bug in a modauthopenidc results in disclosure of protected content to...

8.2CVSS7.5AI score0.00542EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:51 a.m.9 views

CVE-2024-6138

The Secure Copy Content Protection and Content Locking WordPress plugin before 4.0.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

6.5CVSS5.7AI score0.00371EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:39 a.m.8 views

CVE-2024-32787

Missing Authorization vulnerability in Copy Content Protection Team Secure Copy Content Protection and Content Locking.This issue affects Secure Copy Content Protection and Content Locking: from n/a through 3.7.1...

4.3CVSS6.8AI score0.00277EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:34 a.m.5 views

CVE-2024-0042

In TBD of TBD, there is a possible confusion of OEM and DRM certificates due to improperly used crypto. This could lead to local bypass of DRM content protection with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.3AI score0.00111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:57 a.m.7 views

CVE-2024-33587

Missing Authorization vulnerability in Copy Content Protection Team Secure Copy Content Protection and Content Locking.This issue affects Secure Copy Content Protection and Content Locking: from n/a through 3.9.0...

5.3CVSS5.2AI score0.00384EPSS
Exploits0References1
Rows per page
Query Builder