Lucene search
K

320 matches found

Prion
Prion
added 2018/02/26 10:29 p.m.21 views

Directory traversal

A Directory Traversal issue was discovered in the Foxit MobilePDF app before 6.1 for iOS. This occurs by abusing the URL + escape character during a Wi-Fi transfer, which could be exploited by attackers to bypass intended restrictions on local application files...

3.3CVSS5.4AI score0.01124EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/01/08 12:0 a.m.4 views

Google Android MTK Media Elevation of Privilege Vulnerability

Android is a Linux-based open-source operating system developed by Google and the Open Handset Alliance OHA in the U.S. MTK Media is a MediaTek media component used in it. An elevation of privilege vulnerability exists in MTK Media in Android. A remote attacker can exploit this vulnerability to...

9.3CVSS8AI score0.00892EPSS
Exploits0References1
Vulnerability Lab
Vulnerability Lab
added 2018/01/04 12:0 a.m.29 views

Apple iOS v11 6S & 7 - (Health App) DoS Vulnerability

Document Title: =============== Apple iOS v11 6S & 7 - Health App DoS Vulnerability References: =========== https://www.vulnerability-lab.com/getcontent.php?id=2103 Video: https://www.youtube.com/watch?v=AC8Jc8s7uCU ID: 677013407 Release Date: ============= 2018-01-04 Vulnerability Laboratory ID...

7.4AI score
Exploits0
CVE
CVE
added 2017/11/14 5:0 p.m.178 views

CVE-2017-6264

CVE-2017-6264 is an elevation-of-privilege vulnerability in the NVIDIA GPU driver used on Android, specifically within the gm20b_clk_throt_set_cdev_state path. An out-of-bounds memory read can be used as a function pointer, potentially allowing a local attacker to execute arbitrary code in kernel...

9.3CVSS7.2AI score0.01593EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/11/07 12:0 a.m.2 views

Google Android NVIDIA Component Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, and the NVIDIA GPU driver is an NVIDIA graphics processor driver component used in it. The NVIDIA GPU driver in Android is vulnerable to a power lifting vulnerability. A remote...

9.3CVSS7.7AI score0.01593EPSS
Exploits0References1
Prion
Prion
added 2017/10/22 6:29 p.m.15 views

Design/Logic Flaw

The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in the application used to encrypt the connector protection password. An attacker...

4.6CVSS6.3AI score0.003EPSS
Exploits0References2Affected Software1
Citrix
Citrix
added 2017/10/04 12:0 a.m.9 views

Local Application Access With PREFER Keywords

Application will launch within ICA channel even if it's installed locally on VDA itself...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/09/08 12:0 a.m.4 views

Google Android Memory Subsystem Information Disclosure Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA in the U.S. The Memory subsystem is one of the memory subsystems. An information disclosure vulnerability exists in the Memory subsystem of the Imgtk component in Android. An attack...

7.1CVSS5.6AI score0.00401EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/10 12:0 a.m.4 views

Android Framework wi-fi service elevation of privilege vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA, and Framework wi-fi service is one of the Wifi service frameworks. An elevation of privilege vulnerability exists in Framework wi-fi service in Android. An attacker can exploit thi...

7.8CVSS7.9AI score0.00356EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/27 12:0 a.m.6 views

Google Android Libraries Information Disclosure Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Libraries is a library. An information disclosure vulnerability exists in Libraries in Android. A remote attack could exploit this vulnerability to gain unauthorized acce...

5.5CVSS6.3AI score0.00458EPSS
Exploits0References1
NVD
NVD
added 2017/07/06 8:29 p.m.30 views

CVE-2017-6248

An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: N/A...

7.6CVSS6.4AI score0.00755EPSS
Exploits0References3
NVD
NVD
added 2017/06/14 1:29 p.m.17 views

CVE-2017-0639

An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it is a general bypass for operating system protections that isolate application data from other...

5.5CVSS4.7AI score0.00454EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/06/14 1:29 p.m.24 views

CVE-2017-0639

An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it is a general bypass for operating system protections that isolate application data from other...

5.5CVSS6.4AI score0.00454EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/06/14 1:29 p.m.22 views

CVE-2017-0646

An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate due to details specific to the vulnerability. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0...

5.5CVSS6.4AI score0.00449EPSS
Exploits0References2
Prion
Prion
added 2017/06/14 1:29 p.m.20 views

Information disclosure

An information disclosure vulnerability in the Synaptics touchscreen driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10,...

2.6CVSS3.9AI score0.00742EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/06/14 1:29 p.m.9 views

CVE-2017-0647

An information disclosure vulnerability in libziparchive could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 5.0.2, 5.1.1, 6.0,...

5.5CVSS5.4AI score
Exploits0References3
Cvelist
Cvelist
added 2017/06/14 1:0 p.m.21 views

CVE-2017-0650

An information disclosure vulnerability in the Synaptics touchscreen driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10,...

4AI score0.00742EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/06/14 1:0 p.m.23 views

CVE-2017-0647

An information disclosure vulnerability in libziparchive could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. Product: Android. Versions: 5.0.2, 5.1.1, 6.0,...

5.5CVSS6.2AI score0.00458EPSS
Exploits0
NVD
NVD
added 2017/05/12 3:29 p.m.19 views

CVE-2017-0629

An information disclosure vulnerability in the Qualcomm camera driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10,...

4.7CVSS3.7AI score0.00876EPSS
Exploits0References2
NVD
NVD
added 2017/05/12 3:29 p.m.17 views

CVE-2017-0632

An information disclosure vulnerability in the Qualcomm sound codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions:...

4.7CVSS3.7AI score0.00876EPSS
Exploits0References2
Rows per page
Query Builder