187 matches found
Privilege escalation
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause code execution and escalation of Privileges via the database files...
CVE-2023-29735
An issue found in edjing Mix v.7.09.01 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29735
An issue found in edjing Mix v.7.09.01 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29735
An issue found in edjing Mix v.7.09.01 for Android allows a local attacker to cause a denial of service via the database files...
Design/Logic Flaw
An issue found in edjing Mix v.7.09.01 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29737
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29737
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29737
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause a denial of service via the database files...
Design/Logic Flaw
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause a denial of service via the database files...
PT-2023-22389 · Unknown · Wave Animated Keyboard Emoji
Name of the Vulnerable Software and Affected Versions: Wave Animated Keyboard Emoji version 1.70.7 Description: A local attacker can exploit an issue in the software to cause code execution and escalation of privileges via the database files. Recommendations: For version 1.70.7, at the moment,...
CVE-2023-29738
CVE-2023-29738 affects Wave Animated Keyboard Emoji, version 1.70.7 for Android. The issue allows a local attacker to achieve code execution and privilege escalation via the database files , with high impact on confidentiality, integrity, and availability (per CVSS 3.1: AV:L/AC:L/PR:L/UI:N/S:U/C:...
CVE-2023-29735
An issue found in edjing Mix v.7.09.01 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29737
An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause a denial of service via the database files...
CVE-2023-29735
CVE-2023-29735 affects edjing Mix v7.09.01 for Android. The issue allows a local attacker to cause a denial of service via the app’s database files. The provided sources (NVD, Red Hat, CNVD, CVE list, etc.) corroborate the vulnerability and basic impact as a local DoS, with no publicly documented...
PT-2023-22388 · Unknown · Wave Animated Keyboard Emoji
Name of the Vulnerable Software and Affected Versions: Wave Animated Keyboard Emoji version 1.70.7 Description: The issue allows a local attacker to cause a denial of service via the database files. Recommendations: For Wave Animated Keyboard Emoji version 1.70.7, consider restricting access to t...
CVE-2023-32697
SQLite JDBC is a library for accessing and creating SQLite database files in Java. Sqlite-jdbc addresses a remote code execution vulnerability via JDBC URL. This issue impacting versions 3.6.14.1 through 3.41.2.1 and has been fixed in version 3.41.2.2...
VulnCheck KEV: CVE-2021-33035
Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets. DBF are database files with data organized in fields. When reading DBF data the size of certain fields is not checked: the data is just copied into local variables. A carefully crafted document could overflow...
CVE-2022-41400
Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings...
Sage Group Sage 300 信任管理问题漏洞
Sage Group Sage 300 is a well-established, closed-source enterprise resource planning ERP solution from Sage Group UK designed to facilitate business management. A security vulnerability exists in Sage Group Sage 300 version 2022 and prior versions that stems from the use of a hard-coded puffer k...
CVE-2022-41400
Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings...