771 matches found
CVE-2023-21010
In multiple locations of p2piface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
CVE-2023-21047
In ConvertToHalMetadata of aidlutils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid I...
PT-2023-17815 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: In the ufdt local fixup prop function of ufdt overlay.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution...
CVE-2023-1250
Improper Input Validation vulnerability in OTRS AG OTRS ACL modules, OTRS AG OTRS Community Edition ACL modules allows Local Execution of Code. When creating/importing an ACL it was possible to inject code that gets executed via manipulated comments and ACL-names This issue affects OTRS: from 7.0...
Input validation
Improper Input Validation vulnerability in OTRS AG OTRS ACL modules, OTRS AG OTRS Community Edition ACL modules allows Local Execution of Code. When creating/importing an ACL it was possible to inject code that gets executed via manipulated comments and ACL-names This issue affects OTRS: from 7.0...
CVE-2023-1250
Improper Input Validation vulnerability in OTRS AG OTRS ACL modules, OTRS AG OTRS Community Edition ACL modules allows Local Execution of Code. When creating/importing an ACL it was possible to inject code that gets executed via manipulated comments and ACL-names This issue affects OTRS: from 7.0...
CVE-2023-1250 Code execution through ACL creation
Improper Input Validation vulnerability in OTRS AG OTRS ACL modules, OTRS AG OTRS Community Edition ACL modules allows Local Execution of Code. When creating/importing an ACL it was possible to inject code that gets executed via manipulated comments and ACL-names This issue affects OTRS: from 7.0...
OTRS 代码注入漏洞
OTRS is an application from OTRS Germany. A service management software. A security vulnerability exists in OTRS AG OTRS ACL modules, OTRS AG OTRS Community Edition ACL modules, which originates from improper input validation. An attacker could use this vulnerability to locally execute arbitrary...
CVE-2023-20644
In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628603; Issue ID: ALPS07628603...
CVE-2023-20634
In widevine, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07635697; Issue ID: ALPS07635697...
CVE-2023-20645
In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628609; Issue ID: ALPS07628609...
PT-2023-17516 · Ril · Ril
Name of the Vulnerable Software and Affected Versions: ril affected versions not specified Description: The issue is related to a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is...
PT-2023-17495 · Msdc · Msdc
Name of the Vulnerable Software and Affected Versions: msdc affected versions not specified Description: The issue is related to an incorrect bounds check, leading to a possible out of bounds write. This could result in local escalation of privilege, with System execution privileges required. Use...
PT-2023-17513 · Ril · Ril
Name of the Vulnerable Software and Affected Versions: ril affected versions not specified Description: The issue is related to a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is...
PT-2023-17499 · Usb · Usb
Name of the Vulnerable Software and Affected Versions: usb affected versions not specified Description: The issue is related to a possible out of bounds write in usb due to a missing bounds check. This could lead to local escalation of privilege, with System execution privileges needed. User...
CVE-2023-20640
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629573; Issue ID: ALPS07629573...
CVE-2023-20642
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628586; Issue ID: ALPS07628586...
PUB-A-257290396
In rttunpackxtlvcbfn of dhdrtt.c, there is a possible out of bounds write due to a buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
ASB-A-249057848
In AddSupervisedUserActivity, guest users are not prevented from starting the activity due to missing permissions checks. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
PUB-A-243129862
In ParseWithAuthType of simdata.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...