4527 matches found
CVE-2024-56187
CVE-2024-56187 involves a logic error in Google Pixel’s ppcfw_deny_sec_dram_access (ppcfw.c) that allows an arbitrary read of TEE memory, enabling local information disclosure with System privileges and no user interaction required. Affected: Pixel devices; root cause: logic flaw in memory access...
CVE-2024-56187
In ppcfwdenysecdramaccess of ppcfw.c, there is a possible arbitrary read from TEE memory due to a logic error in the code. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...
PUB-A-306032268
In ppcfwdenysecdramaccess of ppcfw.c, there is a possible arbitrary read from TEE memory due to a logic error in the code. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...
Siemens SIMATIC Devices Linux Kernel Incorrect Authorization (CVE-2022-20572)
In veritytarget of dm-verity-target.c, there is a possible way to modify read-only files due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...
CVE-2022-23718
PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the...
CVE-2024-2572
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulation leads to execution after redirect. The attack may be initiated remotely. The exploit has been...
CVE-2024-35177 Improper Access Control in wazuh-agent
Wazuh is a free and open source platform used for threat prevention, detection, and response. It is capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments. The wazuh-agent for Windows is vulnerable to a Local Privilege Escalation vulnerability...
ASB-A-380478495
In TBD of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-0834
Widespread CVE-2025-0834 affects Wondershare Dr.Fone v13.5.21. The vulnerability arises from a privileged escalation flaw where an attacker can replace the binary C:\ProgramData\Wondershare\wsServices\ElevationService.exe with a malicious binary, leading to SYSTEM-level execution. Affected compon...
CVE-2025-0834 Wondershare Dr.Fone Privilege Scalation Vulnerability
Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the binary ‘C:\ProgramData\Wondershare\wsServices\ElevationService.exe’ with a malicious binary. This binary will be executed by...
CVE-2025-0834 Wondershare Dr.Fone Privilege Scalation Vulnerability
Privilege escalation vulnerability has been found in Wondershare Dr.Fone version 13.5.21. This vulnerability could allow an attacker to escalate privileges by replacing the binary ‘C:\ProgramData\Wondershare\wsServices\ElevationService.exe’ with a malicious binary. This binary will be executed by...
PT-2025-4065 · Wondershare · Wondershare Dr.Fone
Name of the Vulnerable Software and Affected Versions: Wondershare Dr.Fone version 13.5.21 Description: A privilege escalation vulnerability has been found in Wondershare Dr.Fone. This issue could allow an attacker to escalate privileges by replacing the binary...
CVE-2018-9405
In BnDmAgent::onTransact of dmagent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9405
In BnDmAgent::onTransact of dmagent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9405
In BnDmAgent::onTransact of dmagent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9384
In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9384
In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9383
In asn1berdecoder of asn1decoder.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...
PT-2025-1337 · Google · Android
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to a possible way to bypass KASLR due to an unusual root cause, which could lead to the disclosure of local information with System execution privileges require...
PT-2025-1336 · Google · Android
Name of the Vulnerable Software and Affected Versions: No specific software or version is mentioned. Description: A possible out-of-bounds read in the asn1 ber decoder function in asn1 decoder.c could lead to local information disclosure with System execution privileges required. No user...