Lucene search
+L

900 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-33191

Malicious code in bioql PyPI...

8.8CVSS7.7AI score0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25593

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00172EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2023-34149

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.00166EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/06 7:31 p.m.16 views

CVE-2025-22415

In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS6.9AI score0.00076EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/05 4:10 p.m.4 views

CVE-2025-32320

In System UI, there is a possible way to view other users' images due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.2AI score0.00073EPSS
Exploits0References1
CVE
CVE
added 2025/09/05 4:10 p.m.54 views

CVE-2025-32320

CVE-2025-32320 affects Android System UI and describes a confused-deputy issue that can lead to local elevation of privilege: an attacker could view other users’ images without extra execution privileges or user interaction. Affected component is Android System UI; root cause is improper access c...

7.8CVSS6.2AI score0.00073EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/09/05 6:15 a.m.15 views

CVE-2025-21029

Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...

4CVSS6.5AI score0.00101EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.6 views

PT-2025-36241

Name of the Vulnerable Software and Affected Versions: Android System UI affected versions not specified Description: A confused deputy condition exists in Android System UI that may allow applications to gain elevated privileges. This could lead to local escalation of privilege without requiring...

7.8CVSS6.4AI score0.00073EPSS
Exploits0References4
OSV
OSV
added 2025/09/04 8:15 p.m.6 views

CVE-2025-22415

In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS5.9AI score0.00076EPSS
Exploits0References1
NVD
NVD
added 2025/09/04 8:15 p.m.9 views

CVE-2025-22415

In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS0.00076EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/04 7:23 p.m.12 views

CVE-2025-22415

In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00076EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/04 7:23 p.m.2 views

CVE-2025-22415

In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00076EPSS
Exploits0References1
CVE
CVE
added 2025/09/04 7:23 p.m.28 views

CVE-2025-22415

CVE-2025-22415 affects Android Wear OS devices and is described as a local elevation-of-privilege in the android_app component of Android.bp, where there is a path to launch any activity as a system user without user interaction. The root cause is tied to the System component behavior in Wear OS/...

4CVSS6.3AI score0.00076EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/09/04 12:0 a.m.5 views

Google Wear OS 安全漏洞

Google Wear OS is a Google-developed operating system from Google, Inc. in the United States, specifically designed for use in smartwatches, smart bands, and other wearable devices. Google Wear OS suffers from a security vulnerability that stems from the ability to initiate arbitrary activities a...

4CVSS6.4AI score0.00076EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/04 12:0 a.m.7 views

PT-2025-36086

Name of the Vulnerable Software and Affected Versions: android app affected versions not specified Description: A flaw exists in android app of Android.bp that may allow launching any activity as a system user. Successful exploitation could lead to local privilege escalation without requiring...

4CVSS5.9AI score0.00076EPSS
Exploits0References5
NVD
NVD
added 2025/09/03 6:15 a.m.5 views

CVE-2025-21029

Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...

4CVSS0.00101EPSS
Exploits0References1
OSV
OSV
added 2025/09/03 6:15 a.m.5 views

CVE-2025-21029

Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...

3.3CVSS5.9AI score0.00101EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/03 6:5 a.m.4 views

CVE-2025-21029

Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...

4CVSS6AI score0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/24 12:13 a.m.6 views

CVE-2025-50674

An issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowing local authenticated attackers to escalate privileges to root...

7.8CVSS7.1AI score0.00172EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/08/22 12:0 a.m.5 views

openmediavault 安全漏洞

openmediavault is openmediavault open source a Debian Linux based network storage NAS solution. It includes services such as SSH, SFTP, SMB / CIFS, DAAP media server, RSync, BitTorrent client and more. Due to the modular design of the framework, it can be enhanced with plugins. A security...

7.8CVSS6.4AI score0.00172EPSS
Exploits1References4
Rows per page
Query Builder