Lucene search
K

107 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:33 p.m.17 views

CVE-2022-20099

In aee daemon, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06296442; Issue ID: ALPS06296442...

7.8CVSS7.2AI score0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:33 p.m.7 views

CVE-2022-20089

In aee driver, there is a possible memory corruption due to active debug code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06240397; Issue ID: ALPS06240397...

6.7CVSS6.8AI score0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:33 p.m.4 views

CVE-2022-20088

In aee driver, there is a possible reference count mistake due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06209201; Issue ID: ALPS06209201...

7.8CVSS6.6AI score0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:19 p.m.6 views

CVE-2022-20090

In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06209197; Issue ID: ALPS06209197...

6.4CVSS7.2AI score0.00079EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:53 p.m.7 views

CVE-2022-20091

In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06209201; Issue ID: ALPS06226345...

6.4CVSS7.2AI score0.00079EPSS
Exploits0References1
OSV
OSV
added 2024/03/04 3:15 a.m.6 views

CVE-2024-20032

In aee, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08487630; Issue ID: MSV-1020...

6.7CVSS5.9AI score0.00085EPSS
Exploits0References1
NVD
NVD
added 2024/03/04 3:15 a.m.21 views

CVE-2024-20032

In aee, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08487630; Issue ID: MSV-1020...

6.7CVSS6.7AI score0.00085EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/04 2:43 a.m.24 views

CVE-2024-20032

In aee, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08487630; Issue ID: MSV-1020...

7AI score0.00085EPSS
Exploits0References1
CVE
CVE
added 2024/03/04 2:43 a.m.67 views

CVE-2024-20032

CVE-2024-20032 affects the aee component and describes a permission bypass due to a missing permission check, enabling local escalation of privilege with System execution privileges required. Exploitation is noted as not requiring user interaction. Connected documents corroborate the issue across...

6.7CVSS6.9AI score0.00085EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/04 4:15 a.m.2 views

CVE-2023-32855

In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07909204; Issue ID: ALPS07909204...

6.7CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2023/12/04 4:15 a.m.19 views

CVE-2023-32855

In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07909204; Issue ID: ALPS07909204...

6.7CVSS0.00107EPSS
Exploits0References1
CVE
CVE
added 2023/12/04 3:45 a.m.47 views

CVE-2023-32855

CVE-2023-32855 describes a privilege-escalation defect in the aee module (MediaTek context) caused by a missing permission check, enabling local escalation to System privileges without user interaction. Exploitation status is not detailed in the provided documents. A fix is referenced as Patch ID...

6.7CVSS6.6AI score0.00107EPSS
Exploits0References1Affected Software4
Positive Technologies
Positive Technologies
added 2023/12/03 12:0 a.m.5 views

PT-2023-24078 · Aee · Aee

Name of the Vulnerable Software and Affected Versions: aee affected versions not specified Description: The issue is related to a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User...

6.7CVSS6.5AI score0.00107EPSS
Exploits0References6
NVD
NVD
added 2022/11/08 9:15 p.m.14 views

CVE-2022-32607

In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202891; Issue ID: ALPS07202891...

6.7CVSS0.00134EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/08 12:0 a.m.19 views

CVE-2022-32607

In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202891; Issue ID: ALPS07202891...

7AI score0.00134EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/11/08 12:0 a.m.6 views

CVE-2022-32607

In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202891; Issue ID: ALPS07202891...

6.8AI score0.00134EPSS
Exploits0References1
CVE
CVE
added 2022/11/08 12:0 a.m.58 views

CVE-2022-32607

CVE-2022-32607 affects the aee component in MediaTek-derived implementations. The root cause is a use-after-free caused by a missing bounds check, enabling local escalation to System privileges without user interaction. The vulnerability is described with a local attack vector and high impact on ...

6.7CVSS6.7AI score0.00134EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/05/03 9:15 p.m.7 views

CVE-2022-20103

In aee daemon, there is a possible information disclosure due to symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06383944; Issue ID: ALPS06282684...

4.4CVSS5.9AI score0.00129EPSS
Exploits0References2
OSV
OSV
added 2022/05/03 9:15 p.m.6 views

CVE-2022-20103

In aee daemon, there is a possible information disclosure due to symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06383944; Issue ID: ALPS06282684...

4.4CVSS5.9AI score0.00129EPSS
Exploits0References1
NVD
NVD
added 2022/05/03 9:15 p.m.16 views

CVE-2022-20103

In aee daemon, there is a possible information disclosure due to symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06383944; Issue ID: ALPS06282684...

4.4CVSS0.00129EPSS
Exploits0References1
Rows per page
Query Builder