Lucene search
K

26 matches found

Vulnrichment
Vulnrichment
added 2026/03/02 8:38 a.m.4 views

CVE-2026-20425

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539...

5.9AI score0.00077EPSS
Exploits0References1
CVE
CVE
added 2026/02/02 8:15 a.m.17 views

CVE-2026-20414

CVE-2026-20414 affects the imgsys component. The issue is a use-after-free vulnerability that can enable local privilege escalation if an attacker already holds System privileges. Exploitation reportedly requires no user interaction. The advisory notes a patch: ALPS10362999 (Issue MSV-5625). Conn...

6.7CVSS5.4AI score0.00097EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/01/06 2:15 a.m.4 views

CVE-2025-20783

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4684...

6.7CVSS0.00072EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:5 a.m.6 views

CVE-2023-20697

In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07589148; Issue ID: ALPS07589148...

4.4CVSS5.2AI score0.00091EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:5 a.m.10 views

CVE-2023-20677

In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588436...

4.4CVSS5.2AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:0 a.m.3 views

CVE-2023-21048

In handleEvent of nan.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

4.4CVSS5.2AI score0.00094EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:59 a.m.5 views

CVE-2023-20789

In jpeg, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07693193; Issue ID: ALPS07693193...

4.4CVSS5.2AI score0.00085EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/19 12:0 a.m.4 views

PT-2024-10645 · Mediatek · Mediatek Audio Driver

Name of the Vulnerable Software and Affected Versions: MediaTek audio driver affected versions not specified Description: The issue is related to a missing bounds check in the mtkscoaudio debugfs, combined with weakened SELinux policies. This could allow for an arbitrary kernel memory write,...

7.8CVSS8.9AI score0.0009EPSS
Exploits0References3
OSV
OSV
added 2024/11/04 2:15 a.m.5 views

CVE-2024-20117

In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1681...

4.4CVSS5.9AI score0.00078EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/01 12:0 a.m.5 views

PT-2024-18540 · Gnss · Gnss

Name of the Vulnerable Software and Affected Versions: gnss affected versions not specified Description: The issue is related to a missing bounds check in gnss, which could lead to a local escalation of privilege. System execution privileges are needed for exploitation, and user interaction is no...

6.6CVSS7AI score0.00269EPSS
Exploits0References4
OSV
OSV
added 2023/09/04 3:15 a.m.6 views

CVE-2023-20823

In cmdq, there is a possible out of bounds read due to an incorrect status check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08021592; Issue ID: ALPS08021592...

4.4CVSS5.9AI score0.00084EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/08/16 2:21 a.m.4 views

SUSE CVE-2023-21264

In multiple functions of memprotect.c, there is a possible way to access hypervisor memory due to a memory access check in the wrong place. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS8AI score0.00151EPSS
Exploits0References3
OSV
OSV
added 2023/08/07 4:15 a.m.4 views

CVE-2023-20798

In pda, there is a possible out of bounds read due to an incorrect calculation of buffer size. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07147572; Issue ID: ALPS07421076...

4.4CVSS6.1AI score0.00088EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/28 12:0 a.m.4 views

PT-2023-17957 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the inviteInternal function of p2p iface.cpp due to a missing bounds check. This could lead to local information disclosure, requiring System...

4.4CVSS4.3AI score0.00094EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/06 12:0 a.m.6 views

PT-2023-17608 · Vcu · Vcu

Name of the Vulnerable Software and Affected Versions: vcu affected versions not specified Description: The issue is related to a possible out of bounds write due to improper locking, which could lead to local escalation of privilege. System execution privileges are needed for exploitation, and...

6.7CVSS7.1AI score0.00075EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/04/06 6:15 p.m.2 views

CVE-2023-20677

In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588413; Issue ID: ALPS07588436...

4.4CVSS6.1AI score0.00093EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.4 views

PT-2023-17841 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the load png image function of ExynosHWCHelper.cpp due to improper input validation. This could lead to local escalation of privilege, requiring System...

6.7CVSS6.7AI score0.00096EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.6 views

PT-2023-17839 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds read in the append camera metadata function of camera metadata.c due to a missing bounds check. This could lead to local information disclosure, requiring System...

4.4CVSS4.6AI score0.00114EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.4 views

PT-2023-17769 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the btu ble rc param req evt function of btu hcif.cc due to a missing bounds check. This could lead to local information disclosure, requiring...

4.4CVSS4.3AI score0.00096EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/11/08 12:0 a.m.7 views

PT-2022-21406 · Jpeg · Jpeg

Name of the Vulnerable Software and Affected Versions: jpeg affected versions not specified Description: The issue is related to a possible use after free due to a race condition. This could lead to local escalation of privilege, with System execution privileges needed. User interaction is not...

6.4CVSS6.4AI score0.00098EPSS
Exploits0References2
Rows per page
Query Builder