Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3774 matches found

Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.4 views

PT-2022-26483 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the wlandata.cpp encode due to improper input validation. This could lead to local escalation of privilege, with System execution privileges required for...

6.7CVSS6.5AI score0.00124EPSS
Exploits0References2
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.17 views

CVE-2022-20586

In validoutofspecialsecdramaddr of drmaccesscontrol.c, there is a possible EoP due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.9AI score0.00125EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2022/12/16 12:0 a.m.5 views

CVE-2022-20574

In secsysmmuinfo of drmfw.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

5.2AI score0.00167EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.15 views

CVE-2022-42516

In ProtocolSimBuilderLegacy::BuildSimGetGbaAuth of protocolsimbuilderlegacy.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product:...

4.6AI score0.00117EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.16 views

CVE-2022-20610

In cellular modem firmware, there is a possible out of bounds read due to a missing bounds check. This could lead to remote code execution with LTE authentication needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-240462530References: N/A...

9AI score0.00714EPSS
Exploits0References1
CVE
CVEadded 2022/12/16 12:0 a.m.87 views

CVE-2022-20578

CVE-2022-20578 : Vulnerability in RadioImpl::setGsmBroadcastConfig of ril_service_legacy.cpp can cause a stack clash and memory corruption, enabling local privilege escalation with System privileges required. The issue is exploitable locally (no user interaction) and affects Android kernels using...

6.7CVSS6.6AI score0.00173EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.15 views

CVE-2022-20564

In ufdtoutputstrtabtofdt of ufdtconvert.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.20 views

CVE-2022-20568

In TBD of TBD, there is a possible way to corrupt kernel memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

8.2AI score0.00209EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.16 views

CVE-2022-20584

In pagenumber of sharedmem.c, there is a possible code execution in secure world due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

8.1AI score0.00125EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.19 views

CVE-2022-20587

In ppmpvalidatewsm of drmfw.c, there is a possible EoP due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.9AI score0.00125EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.13 views

CVE-2022-20589

In validvasecbufcheck of drmaccesscontrol.c, there is a possible ID due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

4.7AI score0.00122EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.14 views

CVE-2022-42503

In ProtocolMiscBuilder::BuildSetLinkCapaReportCriteria of protocolmiscbuilder.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for...

7AI score0.00116EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.15 views

CVE-2022-42506

In SimUpdatePbEntry::encode of simdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7AI score0.00122EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.11 views

CVE-2022-42509

In CallDialReqData::encode of callreqdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7AI score0.00119EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/12/16 12:0 a.m.12 views

CVE-2022-42514

In ProtocolImsBuilder::BuildSetConfig of protocolimsbuilder.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.6AI score0.00117EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.3 views

PT-2022-26493 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible mitigation bypass due to Permissive Memory Allocation in the mmu map for fw function of gs ldfw load.c. This could lead to local escalation of privilege with no additional executi...

7.8CVSS7.5AI score0.00138EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.4 views

PT-2022-14816 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to an incorrect bounds check in Pixel cellular firmware, which could lead to a possible out of bounds read. This may result in local information disclosure without requiring additional executio...

5.5CVSS5AI score0.00119EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.3 views

PT-2022-14776 · Unknown · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to an incorrect bounds check in the ufdt output strtab to fdt function of ufdt convert.c, which could lead to a possible out of bounds write. This could...

6.7CVSS6.3AI score0.00173EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2022/12/16 12:0 a.m.3 views

PT-2022-26472 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel Description: The issue is related to a possible out of bounds write in the EmbmsSessionData::encode function due to a missing bounds check. This could lead to local escalation of privilege, requiring System execution privileges...

6.7CVSS6.5AI score0.00119EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/16 12:0 a.m.4 views

CVE-2022-20572

In veritytarget of dm-verity-target.c, there is a possible way to modify read-only files due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

6.5AI score0.00485EPSS
Exploits0References1
Rows per page
Query Builder