121 matches found
chromium-browser: information disclosure in ipc call
Lack of access control checks in Instrumentation in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to obtain memory metadata from privileged processes...
CVE-2018-6080
Lack of access control checks in Instrumentation in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to obtain memory metadata from privileged processes...
CVE-2017-9369
In BlackBerry QNX Software Development Platform SDP 6.6.0 and 6.5.0 SP1 and earlier, an information disclosure vulnerability in the default configuration of the QNX SDP could allow an attacker to gain information relating to memory layout of higher privileged processes by manipulating environment...
Debian DLA-1135-1 : db security update
It was found that the Berkeley DB reads DBCONFIG from the current working directory, leading to information leak by tricking privileged processes into reading arbitrary files. For Debian 7 'Wheezy', these problems have been fixed in version 5.1.29-5+deb7u1. We recommend that you upgrade your db...
Debian DLA-1136-1 : db4.8 security update
It was found that the Berkeley DB reads DBCONFIG from the current working directory, leading to information leak by tricking privileged processes into reading arbitrary files. For Debian 7 'Wheezy', these problems have been fixed in version 4.8.30-12+deb7u1. We recommend that you upgrade your db4...
CVE-2016-5868
drivers/net/ethernet/msm/rndisipa.c in the Qualcomm networking driver in Android allows remote attackers to execute arbitrary code via a crafted application compromising a privileged process...
Microsoft Edge browser vulnerability, which allows a hacker to gain access to processes in privileged context
The vulnerability of Microsoft Edge relates to improper access to objects in memory. Exploiting this vulnerability can allow a local attacker to gain control over processes from a privileged context...
Microsoft Edge browser vulnerability, which allows a hacker to gain access to processes in privileged context
The vulnerability of Microsoft Edge relates to improper access to objects in memory. Exploiting this vulnerability can allow a local attacker to gain control over processes from a privileged context...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of NVIDIA’s I2C HID driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
The vulnerability of the Qualcomm GPU operating system driver for Android allows a hacker to execute arbitrary code.
The vulnerability of the Qualcomm GPU operating system for Android is related to deficiencies in access control. It is necessary to gain access to privileged processes and modify the current platform configuration. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of MediaTek’s system interrupt driver for the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the Qualcomm Android operating system’s audio driver is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the Qualcomm Android operating system’s audio driver is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
The vulnerability of the Qualcomm Wi-Fi driver for the Android operating system allows a hacker to execute arbitrary code.
The vulnerability of Qualcomm Wi-Fi driver in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
The vulnerability of Synaptics’ sensor screen driver in the Android operating system allows a hacker to execute arbitrary code.
The vulnerability of Synaptics’ touchscreen display driver in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious applications on the touchscreen chipset. This issue is considered “highly...
The vulnerability of the Qualcomm Wi-Fi driver for the Android operating system allows a hacker to execute arbitrary code.
The vulnerability of Qualcomm Wi-Fi driver in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
The vulnerability of the audio driver of Qualcomm’s Android operating system allows a hacker to execute arbitrary code.
The vulnerability of the Qualcomm Android operating system’s audio driver is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
Amazon Linux AMI : util-linux (ALAS-2017-823)
Sending SIGKILL to other processes with root privileges via su : A race condition was found in the way su handled the management of child processes. A local authenticated attacker could use this flaw to kill other processes with root privileges under specific conditions.CVE-2017-2616 C Tenable...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of the Qualcomm Android operating system’s camera driver is related to deficiencies in access control. Exploiting this vulnerability allows a remote attacker to execute arbitrary malicious code within the kernel context. This issue is considered “high” because it requires...
The vulnerability of the Android operating system, allowing a hacker to execute arbitrary code
The vulnerability of Synaptics’ sensor screen driver in the Android operating system is related to access control deficiencies. Exploiting this vulnerability allows a remote attacker to execute arbitrary local malware code within the kernel context. This issue is considered “highly critical”...