Lucene search
K

158 matches found

CNNVD
CNNVD
added 2022/02/07 12:0 a.m.5 views

Google Android 安全漏洞

Google Android is a Linux-based open-source operating system from the U.S. Google Android has an elevation of privilege vulnerability that stems from a lack of privilege checks in system services, which can be exploited by attackers to cause local privilege escalation...

7.8CVSS5.7AI score0.00111EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/01/04 12:0 a.m.8 views

The vulnerability of the IMController component, which is part of the system services, drivers, and additional modules of the Lenovo System Interface Foundation, allows attackers to escalate their privileges.

The vulnerability of the IMController component, which is part of the system services, drivers, and additional modules of the Lenovo System Interface Foundation, stems from a “race condition”. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.1AI score0.01879EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/11/25 12:0 a.m.3 views

Keepalived 安全漏洞

Keepalived is a set of routing software written in C by the Keepalived organization. The software is primarily used for load balancing and fault detection, among other things. Keepalived 2.2.4 suffers from a security vulnerability that stems from a D-Bus policy that does not sufficiently restrict...

5.5CVSS6.2AI score0.01159EPSS
Exploits0References12
CNVD
CNVD
added 2021/07/15 12:0 a.m.20 views

Huawei ManageOne Elevation of Privilege Vulnerability

Huawei Manageone is a cloud data center management solution from Huawei of China. huawei ManageOne is vulnerable due to a lack of checksum when the program uses certain parameters from external files. An attacker could use the vulnerability to construct a malicious file to achieve elevation of...

6.7CVSS3.4AI score0.00173EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/25 12:0 a.m.16 views

Avaya Aura Experience Portal Input Validation Error Vulnerability

Avaya Aura Experience Portal is the next generation of Avaya Voice Portal from Avaya, Inc. providing organizations with a single point of orchestration for all automated voice and multimedia applications and services. experience Portal supports SIP, IP, TDM or hybrid environments. It includes...

6.1CVSS1.9AI score0.0038EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/24 12:0 a.m.4 views

Avaya Aura Experience Portal 输入验证错误漏洞

Avaya Aura Experience Portal is the next generation of Avaya Voice Portal from Avaya, Inc. providing organizations with a single point of orchestration for all automated voice and multimedia applications and services. experience Portal supports SIP, IP, TDM or hybrid environments. It includes...

6.1CVSS5.6AI score0.0038EPSS
Exploits0References2
NVD
NVD
added 2021/04/14 3:15 p.m.24 views

CVE-2021-30493

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the ChromaBroadcast subkey. These privileged operations consist of file name concatenation of a runtime log file that is used to store runtime log information. In other...

5.5CVSS0.00515EPSS
Exploits1References3
Prion
Prion
added 2021/04/14 3:15 p.m.18 views

Design/Logic Flaw

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the ChromaBroadcast subkey. These privileged operations consist of file name concatenation of a runtime log file that is used to store runtime log information. In other...

4.9CVSS5.4AI score0.00515EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2021/04/14 3:15 p.m.18 views

Design/Logic Flaw

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the Razer Chroma SDK subkey. These privileged operations consist of file name concatenation of a runtime log file that is used to store runtime log information. In other...

4.9CVSS5.4AI score0.00495EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/04/14 2:50 p.m.56 views

CVE-2021-30494

The CVE-2021-30494 entry concerns Razer Synapse 3 and the Razer Chroma SDK. The connected documents describe that multiple system services installed with the Razer Synapse 3 suite perform privileged operations on entries within the Chroma SDK subkey, specifically involving file name concatenation...

5.5CVSS5.4AI score0.00495EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/04/14 2:50 p.m.27 views

CVE-2021-30494

Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the Razer Chroma SDK subkey. These privileged operations consist of file name concatenation of a runtime log file that is used to store runtime log information. In other...

5.7AI score0.00495EPSS
Exploits1References3
CVE
CVE
added 2021/04/14 2:49 p.m.42 views

CVE-2021-30493

CVE-2021-30493 describes a vulnerability in the Razer Synapse 3 software where multiple system services perform privileged operations on entries within the ChromaBroadcast subkey, specifically involving file name concatenation of a runtime log file used to store runtime log information. The resul...

5.5CVSS5.4AI score0.00515EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2021/03/02 7:15 p.m.2 views

CVE-2021-22294

A component API of the HarmonyOS 2.0 has a permission bypass vulnerability. Local attackers may exploit this vulnerability to issue commands repeatedly, exhausting system service resources...

3.3CVSS5.8AI score0.00174EPSS
Exploits0References1
NVD
NVD
added 2020/12/17 11:15 p.m.42 views

CVE-2020-12521

On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packet may lead to a high system load in the PROFINET stack. An attacker can cause failure of system services or a complete reboot...

6.5CVSS6.3AI score0.00454EPSS
Exploits0References1
Prion
Prion
added 2020/12/17 11:15 p.m.24 views

Design/Logic Flaw

On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packet may lead to a high system load in the PROFINET stack. An attacker can cause failure of system services or a complete reboot...

6.1CVSS6.4AI score0.00454EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/11/08 5:15 a.m.21 views

CVE-2020-28344

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. System services may crash because of the lack of a NULL parameter check. The LG ID is LVE-SMP-200024 November 2020...

7.8CVSS7.6AI score0.00417EPSS
Exploits0References1
OSV
OSV
added 2020/11/08 5:15 a.m.3 views

CVE-2020-28344

An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. System services may crash because of the lack of a NULL parameter check. The LG ID is LVE-SMP-200024 November 2020...

7.5CVSS5.8AI score0.00417EPSS
Exploits0References1
CVE
CVE
added 2020/11/08 4:4 a.m.58 views

CVE-2020-28344

CVE-2020-28344 affects LG mobile devices running Android 8.0–10. The root cause is a missing NULL parameter check leading to a NULL pointer dereference, which may cause system services to crash. The available documents (NVD, Red Hat, CVE listing) reiterate this description; no specific CVE patch ...

7.8CVSS7.5AI score0.00417EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/06/22 7:15 a.m.24 views

CVE-2019-14092

System Services exports services without permission protect and can lead to information exposure in Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9207C, MDM9607, Rennell, Saipan, SM8150, SM8250, SXR2130...

5.5CVSS0.00187EPSS
Exploits0References2
Prion
Prion
added 2020/06/22 7:15 a.m.21 views

Information disclosure

System Services exports services without permission protect and can lead to information exposure in Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9207C, MDM9607, Rennell, Saipan, SM8150, SM8250, SXR2130...

2.1CVSS6.3AI score0.00187EPSS
Exploits0References2
Rows per page
Query Builder