Lucene search
K

158 matches found

OSV
OSV
added 2025/07/08 3:15 a.m.4 views

CVE-2025-20688

In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418047; Issue ID: MSV-3480...

5.5CVSS5.9AI score0.00162EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/08 12:0 a.m.2 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from an incorrect boundary check resulting in out-of-bounds reads, which could lead to the disclosure of local information...

5.5CVSS6.2AI score0.00142EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/08 12:0 a.m.3 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from an incorrect boundary check resulting in out-of-bounds reads, which could lead to the disclosure of local information...

5.5CVSS6.2AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:20 a.m.4 views

CVE-2024-32904

In ProtocolVsimOperationAdapter of protocolvsimadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation...

4.7CVSS5.5AI score0.00076EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:6 a.m.4 views

CVE-2023-21199

In btubleprocltkreq of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

4.4CVSS5.2AI score0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:7 a.m.3 views

CVE-2023-21029

In register of UidObserverController.java, there is a missing permission check. This could lead to local information disclosure of app usage with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-217934898...

5.5CVSS5.2AI score0.00086EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:16 p.m.2 views

CVE-2020-0497

In canUseBiometric of BiometricServiceBase, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-158481661...

5.5CVSS4.8AI score0.00126EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:16 p.m.5 views

CVE-2020-0453

In updateNotification of BeamTransferManager.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...

5.5CVSS4.9AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:3 a.m.7 views

CVE-2018-9384

In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

4.4CVSS5.6AI score0.00103EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/06 12:0 a.m.4 views

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of privilege checking and could lead to the disclosure of local information...

6.2CVSS6.5AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/04/08 6:16 p.m.3 views

CVE-2025-29808

Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...

5.5CVSS7.2AI score0.00452EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/03/06 3:1 a.m.6 views

SUSE CVE-2025-22413

In multiple functions of hyp-main.c, there is a possible privilege escalation due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS6AI score0.00091EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/03 12:0 a.m.5 views

MediaTek Chipsets 缓冲区错误漏洞

MediaTek Chipsets is a family of chips from China's MediaTek Corporation MediaTek. A buffer error vulnerability exists in MediaTek Chipsets that stems from a lack of boundary checking and could lead to local information disclosure...

4.1CVSS6.2AI score0.00089EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/03 12:0 a.m.5 views

PT-2025-2991 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds read in the GetCellInfoList function of protocolnetadapter.cpp due to a missing bounds check. This coul...

5.5CVSS5.3AI score0.00075EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/11/13 12:0 a.m.7 views

PT-2024-30284 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a confused deputy flaw in the visitUris of multiple files, which could lead to local information disclosure without requiring...

6.2CVSS6.3AI score0.00095EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/10/25 12:0 a.m.4 views

PT-2024-32342 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or version is mentioned. Description: The issue is related to a possible out-of-bounds read in the ProtocolMiscHwConfigChangeAdapter::GetData function, located in protocolmiscadapter.cpp. This could lead to local...

5.5CVSS5.3AI score0.00076EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/26 12:0 a.m.4 views

Apache Portable Runtime 安全漏洞

Apache Portable Runtime APR is an Apache Foundation library that provides an underlying support interface for upper-tier applications that can be used across multiple operating system platforms. A security vulnerability exists in Apache Portable Runtime versions 0.9.0 through 1.7.4, which stems...

5.5CVSS6.1AI score0.00332EPSS
Exploits0References7
OSV
OSV
added 2024/07/22 8:15 p.m.5 views

CVE-2024-6122

An incorrect permission in the installation directory for the shared NI SystemLink Server KeyValueDatabase service may result in information disclosure via local access. This affects NI SystemLink Server 2024 Q1 and prior versions. It also affects NI FlexLogger 2023 Q2 and prior versions which...

5.5CVSS5.8AI score0.00239EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/13 12:0 a.m.12 views

PT-2024-24969 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the fixed version Description: The issue is related to a possible out of bounds read in the FillCellInfo function of CellInfoListParserV2 due to a missing bounds check. This could lead to local information disclosure...

4.3CVSS6.3AI score0.00143EPSS
Exploits0References3
OSV
OSV
added 2024/04/08 3:15 a.m.5 views

CVE-2023-52346

In modem driver, there is a possible system crash due to improper input validation. This could lead to local information disclosure with System execution privileges needed...

4.4CVSS5.9AI score0.00086EPSS
Exploits0References1
Rows per page
Query Builder