149 matches found
CVE-2019-6189
A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an administrative user to load an unsigned DLL...
CVE-2019-6189
CVE-2019-6189 affects Lenovo System Interface Foundation prior to v1.1.18.3, where an administrative user could load an unsigned DLL due to the unsigned-DLL loading vulnerability. This is documented in Lenovo advisories (LEN-29198) and CVE records. Impact is local with authenticated/admin access ...
CVE-2019-6186
A potential vulnerability was reported in Lenovo System Interface Foundation versions before v1.1.18.3 that could allow an authenticated user to execute code as another user...
CVE-2019-6186
Lenovo System Interface Foundation vulnerability CVE-2019-6186 affects versions prior to 1.1.18.3. An authenticated user could execute code as another user. Lenovo advisory LEN-29198 recommends updating to version 1.1.18.3 or higher as the remediation. Other connected records also mention CVE-201...
Lenovo System Interface Foundation Unsigned DLL Loading Vulnerability
The Lenovo System Interface Foundation is a collection of system services, drivers and plug-ins that support Lenovo Vantage applications. An unsigned DLL loading vulnerability exists in Lenovo System Interface Foundation versions prior to 1.1.18.3. An attacker can exploit this vulnerability to lo...
Lenovo System Interface Foundation Arbitrary Code Execution Vulnerability
The Lenovo System Interface Foundation is a collection of system services, drivers and plug-ins that support Lenovo Vantage applications. An arbitrary code execution vulnerability exists in Lenovo System Interface Foundation versions prior to 1.1.18.3. An attacker can exploit this vulnerability t...
Lenovo System Interface Foundation Multiple Security Vulnerabilities
Description Lenovo System Interface Foundation is prone to multiple security vulnerabilities. An attacker can exploit these issues to execute arbitrary code or gain elevated privileges on the affected system. Versions prior to Lenovo System Interface Foundation 1.1.18.3 are vulnerable. Technologi...
Lenovo System Interface Foundation Vulnerabilities - US
Lenovo Security Advisory: LEN-29198 Potential Impact: Lateral Arbitrary Code Execution Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6186, CVE-2019-6189 Summary Description: Potential vulnerabilities were reported in Lenovo System Interface Foundation versions before...
Lenovo System Interface Foundation Vulnerabilities - Lenovo Support US
No description provided...
CVE-2019-5681
NVIDIA Shield TV Experience prior to v8.0, contains a vulnerability in the custom NVIDIA API used in the mount system service where user data could be overridden, which may lead to code execution, denial of service, or information disclosure...
USN-3753-1 linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities
It was discovered that the generic SCSI driver in the Linux kernel did not properly enforce permissions on kernel memory access. A local attacker could use this to expose sensitive information or possibly elevate privileges. CVE-2017-13168 Wen Xu discovered that a use-after-free vulnerability...
PT-2018-6841 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.14.8 Description: The issue arises from improper validation of the sigevent-sigev notify field in the timer create syscall implementation. This leads to out-of-bounds access when the show timer function is...
CVE-2017-2735
TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...
CVE-2017-2735
TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...
Design/Logic Flaw
TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...
CVE-2017-2735
TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user in...
CVE-2017-2735
The CVE-2017-2735 entry relates to TIT-AL00 smartphones with software versions prior to TIT-AL00C583B214, which disclose an exposed system interface vulnerability. The issue arises because the system interface for external applications is not properly restricted, allowing an attacker to trick a u...
Google Android Upstream kernel scsi driver suffers from elevation of privilege vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.Upstream kernel scsi driver is one of the kernel SCSI Small Computer System Interface drivers. An elevation of privilege vulnerability exists in the Upstream kernel scsi driver in...
Google Android System UI Elevation of Privilege Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA for short. System UI is the system interface that comes with Android. A boost vulnerability exists in System UI in Google Android version 7.1.1 and 7.1.2. An attacker can exploit...
Lenovo System Interface Foundation Elevation of Privilege Vulnerability
Lenovo System Interface Foundation is a set of computer system interaction programs from the Chinese company Lenovo. An elevation of privilege vulnerability exists in Lenovo System Interface Foundation. A local attacker can exploit this vulnerability to run arbitrary code with administrator...