CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

NVD•added 2025/12/02 2:15 a.m.•1 views

CVE-2025-58480

Heap-based buffer overflow in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

7.5CVSS0.00043EPSS

Exploits1References1

Positive Technologies•added 2025/12/02 12:0 a.m.•2 views

PT-2025-48593

Name of the Vulnerable Software and Affected Versions libsec-ril.so versions prior to SMR Dec-2025 Release 1 Description A flaw exists in libsec-ril.so due to improper input validation. This issue allows a local privileged attacker to write out-of-bounds memory. Recommendations Update libsec-ril....

5.6CVSS5.9AI score0.00022EPSS

Exploits0References4

Positive Technologies•added 2025/12/02 12:0 a.m.•2 views

PT-2025-48592

Improper export of android application components in Dynamic Lockscreen prior to SMR Dec-2025 Release 1 allows local attackers to access files with Dynamic Lockscreen's privilege...

6.2CVSS6.4AI score0.00014EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-47000

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00123EPSS

Exploits0References1

OSV•added 2024/12/03 6:15 a.m.•0 views

CVE-2024-49414

Authentication Bypass Using an Alternate Path in Dex Mode prior to SMR Dec-2024 Release 1 allows physical attackers to temporarily access to recent app list...

2.4CVSS5.8AI score

Exploits0References1

Positive Technologies•added 2024/12/03 12:0 a.m.•1 views

PT-2024-33524 · Samsung · Galaxy Watch

Name of the Vulnerable Software and Affected Versions: Settings versions prior to SMR Dec-2024 Release 1 Description: The issue is related to improper input validation in Settings, which allows local attackers to broadcast a signal for discovering Bluetooth on Galaxy Watch. This can be exploited ...

5.5CVSS7.1AI score0.00059EPSS

Exploits0References5

OSV•added 2023/12/05 3:15 a.m.•0 views

CVE-2023-42566

Out-of-bound write vulnerability in libsavsvc prior to SMR Dec-2023 Release 1 allows local attackers to execute arbitrary code...

7.8CVSS6AI score

Exploits0References1

CNNVD•added 2023/12/05 12:0 a.m.•1 views

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability previously existed in SAMSUNG Mobile devices SMR Dec-2023 Release 1, which stemmed from a heap out-of-bounds write vulnerability in the...

7.1CVSS6.7AI score0.00211EPSS

Exploits0References1

CNNVD•added 2023/12/05 12:0 a.m.•1 views

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from Samsung South Korea. A security vulnerability exists in SAMSUNG Mobile devices prior to SMR Dec-2023 Release 1, which stems from an out-of-bounds write vulnerability in libsavsvc...

7.8CVSS7.7AI score0.00089EPSS

Exploits0References1

OSV•added 2022/12/08 4:15 p.m.•0 views

CVE-2022-39906

Improper access control vulnerability in SecTelephonyProvider prior to SMR Dec-2022 Release 1 allows attackers to access message information...

3.3CVSS5.8AI score0.00017EPSS

Exploits0References1

Positive Technologies•added 2022/12/08 12:0 a.m.•2 views

PT-2022-25093 · Unknown · Nice Catch

Name of the Vulnerable Software and Affected Versions: Nice Catch versions prior to SMR Dec-2022 Release 1 Description: The issue is related to improper access control, allowing physical attackers to access the contents of all toast generated in the application installed in Secure Folder through...

4.6CVSS4.3AI score0.00037EPSS

Exploits0References2

CNNVD•added 2022/12/08 12:0 a.m.•2 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Dec-2022 Release 1, which stems from an incorrect access control vulnerability in...

4CVSS5AI score0.00018EPSS

Exploits0References2

Rapid7 Blog•added 2022/12/07 7:8 p.m.•42 views

CVE-2022-4261: Rapid7 Nexpose Update Validation Issue (FIXED)

On November 14, 2022, Rapid7's product engineering team discovered that the mechanism in Nexpose and InsightVM used to validate the source of an update file was unreliable. This failure, which involved the internal cryptographic validation of received updates, was designated as CVE-2022-4261, and...

0.5AI score0.00097EPSS

Exploits1

OSV•added 2021/12/08 3:15 p.m.•0 views

CVE-2021-25517

An improper input validation vulnerability in LDFW prior to SMR Dec-2021 Release 1 allows attackers to perform arbitrary code execution...

7.8CVSS6AI score

Exploits0References1

OSV•added 2021/12/08 3:15 p.m.•0 views

CVE-2021-25512

An improper validation vulnerability in telephony prior to SMR Dec-2021 Release 1 allows attackers to launch certain activities...

7.8CVSS7.1AI score0.00016EPSS

Exploits0References1

Positive Technologies•added 2021/12/08 12:0 a.m.•1 views

PT-2021-16705 · Unknown · Semrewardmanager

Name of the Vulnerable Software and Affected Versions: SemRewardManager versions prior to SMR Dec-2021 Release 1 Description: The issue is related to an improper usage of implicit intent in SemRewardManager, allowing attackers to access BSSID. Recommendations: For versions prior to SMR Dec-2021...

4CVSS3.8AI score0.00018EPSS

Exploits0References3

Microsoft KB•added 2021/11/09 12:0 a.m.•8 views

November 9, 2021 Security Update (KB5007187)

November 9, 2021 Security Update KB5007187 NEW 11/9/2021 IMPORTANT Because of minimal operations during the holidays and the upcoming Western new year, there won’t be a preview release known as a “C” release for the month of December 2021. There will be a monthly security release known as a “B”...

6.9AI score

Exploits0