CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

101 matches found

OSV•added 2020/10/14 2:15 p.m.•1 views

CVE-2020-0400

In showDataRoamingNotification of NotificationMgr.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...

5.5CVSS6.7AI score0.00188EPSS

Exploits0References1

OSV•added 2020/09/18 4:15 p.m.•1 views

CVE-2020-0313

In NotificationManagerService, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-154917989...

5.5CVSS6.2AI score0.00159EPSS

Exploits1References1

OSV•added 2020/09/17 4:15 p.m.•1 views

CVE-2020-0399

In showLimitedSimFunctionWarningNotification of NotificationMgr.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS5.9AI score

Exploits0References1

OSV•added 2020/03/10 9:15 p.m.•3 views

CVE-2020-0084

In several functions of NotificationManagerService.java, there are missing permission checks. This could lead to local escalation of privilege by creating fake system notifications with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.2AI score0.0015EPSS

Exploits0References1

CNVD•added 2020/01/22 12:0 a.m.•5 views

Microsoft Update Notification Manager Privilege Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, a U.S. company.Microsoft Windows is a set of operating systems for use on personal devices. An elevation of privilege vulnerability exists in the way files are handled in Microsoft Update Notification...

7.8CVSS7.2AI score0.02953EPSS

Exploits0References1

NVD•added 2020/01/14 11:15 p.m.•18 views

CVE-2020-0638

An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'...

7.8CVSS8.8AI score0.02953EPSS

Exploits0References2

Prion•added 2020/01/14 11:15 p.m.•14 views

Privilege escalation

4.6CVSS7.8AI score0.02953EPSS

Exploits0References1Affected Software2

Vulnrichment•added 2020/01/14 11:11 p.m.•6 views

CVE-2020-0638

7.1AI score0.02953EPSS

Exploits0References1

CVE•added 2020/01/14 11:11 p.m.•1061 views

CVE-2020-0638

CVE-2020-0638 is a Windows Update Notification Manager elevation-of-privilege vulnerability. An attacker who already has code execution on the target could exploit the flaw by running a crafted program to elevate privileges, due to how the Update Notification Manager handles files. The issue is l...

7.8CVSS8.6AI score0.02953EPSS

In wildExploits0References2Affected Software9

Cvelist•added 2020/01/14 11:11 p.m.•40 views

CVE-2020-0638

9AI score0.02953EPSS

Exploits0References1

Microsoft CVE•added 2020/01/14 8:0 a.m.•26 views

Update Notification Manager Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The securi...

7.8CVSS3.7AI score0.02953EPSS

Exploits0

ATTACKERKB•added 2020/01/14 12:0 a.m.•29 views

CVE-2020-0638

An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka ‘Update Notification Manager Elevation of Privilege Vulnerability’. Recent assessments:...

7.8CVSS8.7AI score0.02953EPSS

In wildExploits0References2

Positive Technologies•added 2020/01/14 12:0 a.m.•2 views

PT-2020-1313 · Microsoft · Update Notification Manager +1

Name of the Vulnerable Software and Affected Versions: Microsoft Update Notification Manager affected versions not specified Description: An elevation of privilege issue exists in the way the Update Notification Manager handles files. To exploit this issue, an attacker would first have to gain...

7.8CVSS6.9AI score0.02953EPSS

Exploits0References10

OSV•added 2019/12/06 11:15 p.m.•5 views

CVE-2019-2219

In several functions of NotificationManagerService.java and related files, there is a possible way to record audio from the background without notification to the user due to a permission bypass. This could lead to local escalation of privilege with User execution privileges needed. User...

4.7CVSS5.9AI score0.00148EPSS

Exploits0References1

CNVD•added 2016/09/12 12:0 a.m.•1 views

Android Security Restriction Bypass Vulnerability (CNVD-2016-07468)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA for short.Notification Manager Service is one of the status bar management services. A security restriction bypass vulnerability exists in the...

5.5CVSS6.8AI score0.00439EPSS

Exploits0References1

OSV•added 2016/09/11 9:59 p.m.•1 views

CVE-2016-3884

server/notification/NotificationManagerService.java in the Notification Manager Service in Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 lacks uid checks, which allows attackers to bypass intended restrictions on method calls via a crafted application, aka internal bug 29421441...

5.5CVSS7.3AI score0.00439EPSS

Exploits0References4

NVD•added 2016/09/11 9:59 p.m.•23 views

CVE-2016-3884

5.5CVSS5.2AI score0.00439EPSS

Exploits0References4