Lucene search
K

111 matches found

Cvelist
Cvelist
added 2023/12/04 12:54 a.m.22 views

CVE-2023-42672

In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.6AI score0.00095EPSS
Exploits0References1
CVE
CVE
added 2023/12/04 12:54 a.m.41 views

CVE-2023-42671

The CVE-2023-42671 issue affects imsservice and stems from a missing permission check, allowing an app to write permission usage records and potentially disclose information locally. This is a local information disclosure vulnerability with no additional execution privileges required. Affected co...

5.5CVSS5.2AI score0.00095EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/04 12:54 a.m.39 views

CVE-2023-42672

The CVE-2023-42672 entry concerns UNISOC/imsservice with a missing permission check, enabling an attacker to write permission usage records and cause local information disclosure without executing code. Affected component: imsservice in UNISOC chipsets. Root cause: absence of permission validatio...

5.5CVSS5.2AI score0.00095EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/04 12:54 a.m.20 views

CVE-2023-42671

In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.6AI score0.00095EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.6 views

PT-2023-28496 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue in imsservice allows for writing permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional...

5.5CVSS5.2AI score0.00095EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.4 views

PT-2023-28525 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This might lead to local information disclosure without...

5.5CVSS5.1AI score0.00095EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.6 views

PT-2023-28494 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This may lead to local information disclosure without...

5.5CVSS5.1AI score0.00095EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.4 views

PT-2023-28492 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, allowing potential local information disclosure without requiring additional execution privileges. This could lead to...

5.5CVSS5.1AI score0.00095EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.4 views

PT-2023-28526 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This may lead to local information disclosure without...

5.5CVSS5.1AI score0.00095EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.4 views

PT-2023-28490 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, allowing an app's permission usage records to be written. This could lead to local information disclosure without...

5.5CVSS5.1AI score0.00095EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.4 views

PT-2023-28493 · Unisoc · Unisoc

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue is related to a missing permission check in imsservice, which could allow writing permission usage records of an app. This might lead to local information disclosure without...

5.5CVSS5.1AI score0.00095EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/06/28 6:15 p.m.5 views

CVE-2023-21153

In DoAIMSSETCALLWAITING of imsservice.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroi...

6.7CVSS6.1AI score0.00096EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/28 12:0 a.m.7 views

Google Pixel 缓冲区错误漏洞

Google Pixel is a smartphone from Google, Inc. in the United States. A security vulnerability exists in Google Pixel, which stems from the presence of a missing bounds check in the DoAIMSSETCALLWAITING of the imsservice.cpp file, which may result in an out-of-bounds read...

6.7CVSS6.6AI score0.00096EPSS
Exploits0References2
OSV
OSV
added 2022/10/07 3:15 p.m.2 views

CVE-2022-39856

Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...

3.3CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2022/10/07 3:15 p.m.24 views

CVE-2022-39856

Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...

4CVSS0.00082EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/07 3:15 p.m.3 views

CVE-2022-39856

Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...

4CVSS5.8AI score0.00082EPSS
Exploits0References2
Prion
Prion
added 2022/10/07 3:15 p.m.15 views

Improper access control

Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...

1.7CVSS4AI score0.00082EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/10/07 12:0 a.m.2 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Oct-2022 Release 1 version, which stems from an improper access control vulnerability in...

4CVSS5AI score0.00082EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/07 12:0 a.m.33 views

CVE-2022-39856

Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information...

4CVSS4.5AI score0.00082EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.4 views

PT-2022-25046 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice application prior to SMR Oct-2022 Release 1 Description: The issue is related to improper access control in the imsservice application, allowing local attackers to access call information. Recommendations: For versions prior to SMR...

4CVSS3.8AI score0.00082EPSS
Exploits0References3
Rows per page
Query Builder