CVE-2021-40006

Vulnerability of design defects in the security algorithm component. Successful exploitation of this vulnerability may affect confidentiality...

CVE-2021-37121

There is a Configuration defects in Smartphone.Successful exploitation of this vulnerability may elevate the MEID IMEI permission...

CVE-2020-9119

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion...

The vulnerability of the Linux operating system’s kernel’s media component, which allows a hacker to cause a service failure

The vulnerability of the Linux operating system’s kernel media component is related to defects in exception handling in the MODULEPARMDESC function. Exploiting this vulnerability can allow an attacker to cause a service failure...

Amazon Linux 2023 : python3.11, python3.11-devel, python3.11-idle (ALAS2023-2024-788)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-788 advisory. The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spe...

Fedora 41 : chromium (2024-3a6f9ab958)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-3a6f9ab958 advisory. Update to 130.0.6723.58 High CVE-2024-9954: Use after free in AI Medium CVE-2024-9955: Use after free in Web Authentication Medium CVE-2024-9956:...

UBUNTU-CVE-2024-46775

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Validate function returns WHAT & HOW Function return values must be checked before data can be used in subsequent functions. This fixes 4 CHECKEDRETURN issues reported by Coverity...

The vulnerability of Siemens LOGO programmable logic controllers’ built-in software relates to the use of cryptographic algorithms that contain defects, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Siemens LOGO programmable logic controllers’ built-in software is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow an attacker operating remotely to gain access to protected information...

iptables bug fix update

An update is available for iptables. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The iptables utility controls the network packet filtering code in the Linux...

CVE-2023-52714

Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2023-52714

CVE-2023-52714 affects Huawei HarmonyOS (and Huawei EMUI) via the hwnff module. The root cause is defects introduced in the design process of the hwnff module, leading to potential information disclosure that may compromise service confidentiality. Documentation consistently states impact as conf...

PT-2024-14705 · Unknown · Hwnff Module

Name of the Vulnerable Software and Affected Versions: hwnff module affected versions not specified Description: The issue is related to defects introduced in the design process in the hwnff module. Successful exploitation of this vulnerability may affect service confidentiality. Recommendations:...

The vulnerability of the PowerScale OneFS operating system, related to the use of cryptographic algorithms containing defects, allows a perpetrator to disclose protected information.

The vulnerability of the PowerScale OneFS operating system is related to the use of cryptographic algorithms that contain defects. Exploiting this vulnerability allows a malicious actor to disclose the protected information...

CVE-2023-52358

Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability...

CVE-2023-52363

Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerability may cause app processes to be started by mistake...

CVE-2023-52358

Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability...

Design/Logic Flaw

Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability...

CVE-2023-52358

CVE-2023-52358 concerns a configuration flaw in Huawei HarmonyOS/EMUI audio module APIs that can be exploited to cause a denial of service, impacting availability. The vulnerability is tied to the audio subsystem in HarmonyOS and EMUI, with the root cause described as a configuration defect in th...

CVE-2023-52358

Vulnerability of configuration defects in some APIs of the audio module.Successful exploitation of this vulnerability may affect availability...

The vulnerability of the access control list (ACL) mechanism in microprogrammed software for Cisco Business 250/350 Series switches, related to access control deficiencies, allows attackers to circumvent existing security restrictions.

The vulnerability of the access control list ACL mechanism in Cisco Business 250/350 Series microprogrammed software switches is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions remotely...