Lucene search
K

4527 matches found

CVE
CVE
added 2025/03/10 6:19 p.m.78 views

CVE-2024-56187

CVE-2024-56187 involves a logic error in Google Pixel’s ppcfw_deny_sec_dram_access (ppcfw.c) that allows an arbitrary read of TEE memory, enabling local information disclosure with System privileges and no user interaction required. Affected: Pixel devices; root cause: logic flaw in memory access...

6.6CVSS6.3AI score0.00082EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/03/10 6:19 p.m.7 views

CVE-2024-56187

In ppcfwdenysecdramaccess of ppcfw.c, there is a possible arbitrary read from TEE memory due to a logic error in the code. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

0.00082EPSS
Exploits0References1
OSV
OSV
added 2025/03/01 12:0 a.m.5 views

PUB-A-306032268

In ppcfwdenysecdramaccess of ppcfw.c, there is a possible arbitrary read from TEE memory due to a logic error in the code. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

6.6CVSS6.1AI score0.00082EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.11 views

Siemens SIMATIC Devices Linux Kernel Incorrect Authorization (CVE-2022-20572)

In veritytarget of dm-verity-target.c, there is a possible way to modify read-only files due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

6.7CVSS6.1AI score0.00485EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 11:28 p.m.10 views

CVE-2022-23718

PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the...

9.3CVSS7.5AI score0.01894EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:53 a.m.12 views

CVE-2024-2572

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulation leads to execution after redirect. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.1AI score0.0103EPSS
Exploits0References1
OSV
OSV
added 2025/02/03 9:35 p.m.5 views

CVE-2024-35177 Improper Access Control in wazuh-agent

Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. The wazuh-agent for Windows is vulnerable to a Local Privilege Escalation vulnerability...

7.8CVSS7AI score0.00255EPSS
Exploits1References3
OSV
OSV
added 2025/02/01 12:0 a.m.6 views

ASB-A-380478495

In TBD of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

4.1CVSS7.1AI score0.00226EPSS
Exploits0References1
CVE
CVE
added 2025/01/30 9:2 a.m.46 views

CVE-2025-0834

Widespread CVE-2025-0834 affects Wondershare Dr.Fone v13.5.21. The vulnerability arises from a privileged escalation flaw where an attacker can replace the binary C:\ProgramData\Wondershare\wsServices\ElevationService.exe with a malicious binary, leading to SYSTEM-level execution. Affected compon...

7.8CVSS7.9AI score0.00153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/30 9:2 a.m.8 views

CVE-2025-0834 Wondershare Dr.Fone Privilege Scalation Vulnerability

Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the binary ‘C:\ProgramData\Wondershare\wsServices\ElevationService.exe’ with a malicious binary. This binary will be executed by...

7.8CVSS7.9AI score0.00153EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/30 9:2 a.m.19 views

CVE-2025-0834 Wondershare Dr.Fone Privilege Scalation Vulnerability

Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the binary ‘C:\ProgramData\Wondershare\wsServices\ElevationService.exe’ with a malicious binary. This binary will be executed by...

7.8CVSS0.00153EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/30 12:0 a.m.3 views

PT-2025-4065 · Wondershare · Wondershare Dr.Fone

Name of the Vulnerable Software and Affected Versions: Wondershare Dr.Fone version 13.5.21 Description: A privilege escalation vulnerability has been found in Wondershare Dr.Fone. This issue could allow an attacker to escalate privileges by replacing the binary...

7.8CVSS7.5AI score0.00153EPSS
Exploits0References7
NVD
NVD
added 2025/01/18 12:15 a.m.14 views

CVE-2018-9405

In BnDmAgent::onTransact of dmagent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS0.00103EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/17 11:17 p.m.6 views

CVE-2018-9405

In BnDmAgent::onTransact of dmagent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.8AI score0.00103EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/17 11:17 p.m.10 views

CVE-2018-9405

In BnDmAgent::onTransact of dmagent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

0.00103EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/17 11:4 p.m.9 views

CVE-2018-9384

In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00103EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/17 11:4 p.m.12 views

CVE-2018-9384

In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

0.00103EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/17 11:3 p.m.6 views

CVE-2018-9383

In asn1berdecoder of asn1decoder.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00105EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.5 views

PT-2025-1337 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to a possible way to bypass KASLR due to an unusual root cause, which could lead to the disclosure of local information with System execution privileges require...

4.4CVSS8.7AI score0.00103EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.6 views

PT-2025-1336 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or version is mentioned. Description: A possible out-of-bounds read in the asn1 ber decoder function in asn1 decoder.c could lead to local information disclosure with System execution privileges required. No user...

4.4CVSS7.6AI score0.00105EPSS
Exploits0References4
Rows per page
Query Builder