Lucene search
K

702 matches found

ATTACKERKB
ATTACKERKB
added 2020/12/15 4:15 p.m.4 views

CVE-2020-27035

In priorLinearAllocation of C2AllocatorIon.cpp, there is a possible use-after-free due to improper locking. This could lead to local information disclosure in the media codec with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS5.6AI score0.00112EPSS
Exploits0References2
Prion
Prion
added 2020/12/15 4:15 p.m.18 views

Design/Logic Flaw

In priorLinearAllocation of C2AllocatorIon.cpp, there is a possible use-after-free due to improper locking. This could lead to local information disclosure in the media codec with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

2.1CVSS5.8AI score0.00112EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/15 4:2 p.m.24 views

CVE-2020-27035

In priorLinearAllocation of C2AllocatorIon.cpp, there is a possible use-after-free due to improper locking. This could lead to local information disclosure in the media codec with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

6AI score0.00112EPSS
Exploits0References1
OSV
OSV
added 2020/10/14 2:15 p.m.9 views

CVE-2020-0423

In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS7.7AI score
Exploits0References2
OSV
OSV
added 2020/10/14 2:15 p.m.0 views

DEBIAN-CVE-2020-0423

In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS6.2AI score0.00507EPSS
Exploits2References1
Prion
Prion
added 2020/10/14 2:15 p.m.23 views

Input validation

In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.2CVSS7.4AI score0.00507EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2020/10/14 2:15 p.m.7 views

UBUNTU-CVE-2020-0423

In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS6.5AI score0.00507EPSS
Exploits2References7
Debian CVE
Debian CVE
added 2020/10/14 1:7 p.m.40 views

CVE-2020-0423

In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS5.2AI score0.00507EPSS
Exploits2
CVE
CVE
added 2020/10/14 1:7 p.m.307 views

CVE-2020-0423

CVE-2020-0423 is a use-after-free in the Android/Linux binder driver (binder_release_work in binder.c) caused by improper locking. It enables local privilege escalation with no extra user interaction required. The description appears consistently across multiple connected sources (e.g., Astra Lin...

7.8CVSS7.4AI score0.00507EPSS
Exploits2References2Affected Software1
CNVD
CNVD
added 2020/09/18 12:0 a.m.1 views

Google Android Media extractor cross-site scripting vulnerability

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A cross-site scripting vulnerability exists in the Android-11 version of Media extractor. The vulnerability stems from improper locking and can be exploited by an attacker to cause remote code...

8.8CVSS7.4AI score0.00559EPSS
Exploits0References1
OSV
OSV
added 2020/09/17 9:15 p.m.3 views

CVE-2020-0357

In SurfaceFlinger, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the graphics server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

7.8CVSS7.2AI score0.0012EPSS
Exploits0References1
OSV
OSV
added 2020/09/17 9:15 p.m.3 views

CVE-2020-0303

In the Media extractor, there is a possible use after free due to improper locking. This could lead to remote code execution in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-1482232...

8.8CVSS7.8AI score0.00559EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/17 8:51 p.m.22 views

CVE-2020-0303

In the Media extractor, there is a possible use after free due to improper locking. This could lead to remote code execution in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-1482232...

9.2AI score0.00559EPSS
Exploits0References1
CVE
CVE
added 2020/09/17 8:51 p.m.49 views

CVE-2020-0303

CVE-2020-0303 affects the Android 11 Media extractor, where a use-after-free caused by improper locking can lead to remote code execution. The issue concerns the media-extractor component (Android-11) and is described as enabling remote code execution with no or minimal privileges; exploitation r...

8.8CVSS9AI score0.00559EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/09/17 7:15 p.m.10 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS0.00151EPSS
Exploits0References1
OSV
OSV
added 2020/09/17 7:15 p.m.6 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS8.1AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/09/17 7:15 p.m.27 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS7AI score0.00151EPSS
Exploits0References4
Prion
Prion
added 2020/09/17 7:15 p.m.19 views

Design/Logic Flaw

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

4.6CVSS7.7AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2020/09/17 7:15 p.m.3 views

UBUNTU-CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS6.8AI score0.00151EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2020/09/17 7:15 p.m.5 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS5.6AI score0.00151EPSS
Exploits0References2
Rows per page
Query Builder