CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

136 matches found

Prion•added 2022/11/08 9:15 p.m.•15 views

Race condition

In vcu, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07206340; Issue ID: ALPS07206340...

3.4CVSS6.7AI score0.00098EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/11/08 12:0 a.m.•21 views

CVE-2022-32610

In vcu, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203476; Issue ID: ALPS07203476...

6.8AI score0.00123EPSS

Exploits0References1

CVE•added 2022/11/08 12:0 a.m.•54 views

CVE-2022-32609

CVE-2022-32609 affects the vcu component (MediaTek) and is caused by a race condition that enables a use-after-free. The issue can lead to local escalation of privilege with SYSTEM privileges required; exploitation does not require user interaction. Patch ALPS07203410/ALPS07203410 is referenced a...

6.4CVSS6.6AI score0.00123EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/11/08 12:0 a.m.•15 views

CVE-2022-32609

6.8AI score0.00123EPSS

Exploits0References1

CVE•added 2022/11/08 12:0 a.m.•60 views

CVE-2022-32612

CVE-2022-32612 concerns a possible memory-use-after-free in the MediaTek/vcu stack caused by a race condition. Reported as enabling local escalation of privilege with System execution privileges required and no user interaction needed. Multiple sources confirm the issue, but public details about ...

6.4CVSS6.6AI score0.00098EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2022/11/08 12:0 a.m.•6 views

PT-2022-21408 · Vcu · Vcu

Name of the Vulnerable Software and Affected Versions: vcu affected versions not specified Description: The issue is related to a possible use after free due to a race condition, which could lead to local escalation of privilege. System execution privileges are needed for exploitation, and user...

6.4CVSS6.4AI score0.00123EPSS

Exploits0References2

Cvelist•added 2022/11/08 12:0 a.m.•17 views

CVE-2022-32612

6.8AI score0.00098EPSS

Exploits0References1

CVE•added 2022/11/08 12:0 a.m.•63 views

CVE-2022-32610

CVE-2022-32610 concerns the vcu component, where a race condition can cause a use-after-free, enabling local escalation to SYSTEM without user interaction. The underlying issue is a memory management flaw leading to a potential privilege compromise. A patch is available under Patch ID ALPS0720347...

6.4CVSS6.6AI score0.00123EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2022/02/09 11:15 p.m.•6 views

CVE-2022-20035

In vcu driver, there is a possible information disclosure due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06171675; Issue ID: ALPS06171675...

4.4CVSS5.9AI score0.00118EPSS

Exploits0References2

NVD•added 2022/02/09 11:15 p.m.•12 views

CVE-2022-20035

4.4CVSS0.00118EPSS

Exploits0References1

OSV•added 2022/02/09 11:15 p.m.•7 views

CVE-2022-20035

4.4CVSS5.9AI score0.00118EPSS

Exploits0References1

Prion•added 2022/02/09 11:15 p.m.•18 views

Information disclosure

2.1CVSS4.7AI score0.00118EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/02/09 10:5 p.m.•17 views

CVE-2022-20035

5AI score0.00118EPSS

Exploits0References1

CVE•added 2022/02/09 10:5 p.m.•88 views

CVE-2022-20035

CVE-2022-20035 involves the vcu driver and an information-disclosure use-after-free vulnerability that could allow local escalation to System privileges. The issue does not require user interaction. Affected component: vcu driver. Root cause: use-after-free leading to partial confidentiality impa...

4.4CVSS4.7AI score0.00118EPSS

Exploits0References1Affected Software1

CNVD•added 2020/07/07 12:0 a.m.•4 views

Google Android MediaTek Component Buffer Overflow Vulnerability

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A security vulnerability exists in the vcu component of Android. An attacker can exploit the vulnerability to elevate privileges...

9.8CVSS6.8AI score0.00478EPSS

Exploits3References1