Lucene search
+L

70 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS8.6AI score0.01483EPSS
Exploits1References6
0day.today
0day.today
added 2020/01/15 12:0 a.m.139 views

Android - ashmem Readonly Bypasses via remap_file_pages() and ASHMEM_UNPIN Exploit

This bug report describes two ways in which an attacker can modify the contents of a read-only ashmem fd. I'm not sure at this point what the most interesting user of ashmem is in the current Android release, but there are various users, including Chrome and a bunch of utility classes. In AOSP...

5.5CVSS6.5AI score0.00687EPSS
Exploits4
exploitpack
exploitpack
added 2020/01/14 12:0 a.m.31 views

Android - ashmem Readonly Bypasses via remap_file_pages() and ASHMEM_UNPIN

Android - ashmem Readonly Bypasses via remapfilepages and ASHMEMUNPIN This bug report describes two ways in which an attacker can modify the contents of a read-only ashmem fd. I'm not sure at this point what the most interesting user of ashmem is in the current Android release, but there are...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2020/01/14 12:0 a.m.171 views

Android - ashmem Readonly Bypasses via remap_file_pages() and ASHMEM_UNPIN

This bug report describes two ways in which an attacker can modify the contents of a read-only ashmem fd. I'm not sure at this point what the most interesting user of ashmem is in the current Android release, but there are various users, including Chrome and a bunch of utility classes. In AOSP...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/01/10 12:0 a.m.222 views

Android ashmem Read-Only Bypasses

Android: ashmem readonly bypasses via remapfilepages and ASHMEMUNPIN This bug report describes two ways in which an attacker can modify the contents of a read-only ashmem fd. I'm not sure at this point what the most interesting user of ashmem is in the current Android release, but there are vario...

0.00687EPSS
Exploits4
0day.today
0day.today
added 2020/01/10 12:0 a.m.139 views

Android ashmem Read-Only Bypasses Exploit

Android suffers from ashmem read-only bypass vulnerabilities via remapfilepages and ASHMEMUNPIN. Android: ashmem readonly bypasses via remapfilepages and ASHMEMUNPIN This bug report describes two ways in which an attacker can modify the contents of a read-only ashmem fd. I'm not sure at this poin...

5.5CVSS0.6AI score0.00687EPSS
Exploits4
OSV
OSV
added 2020/01/08 4:15 p.m.1 views

DEBIAN-CVE-2020-0009

In calcvmmayflags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS7AI score0.00687EPSS
Exploits4References1
OSV
OSV
added 2020/01/08 4:15 p.m.5 views

UBUNTU-CVE-2020-0009

In calcvmmayflags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS7AI score0.00687EPSS
Exploits4References3
CNVD
CNVD
added 2020/01/07 12:0 a.m.5 views

Google Android Kernel Component Elevation of Privilege Vulnerability (CNVD-2020-02990)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. An elevation of privilege vulnerability exists in the Google Android Kernel component ashmem. An attacker can exploit this vulnerability to cause a local escalation...

5.5CVSS8.7AI score0.00687EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.56 views

EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1517)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A memory corruption flaw was found in the way the USB ConnectTech WhiteHEAT serial driver processed completion command...

7.8CVSS7.6AI score0.0523EPSS
Exploits2References21
Prion
Prion
added 2018/11/14 3:29 p.m.22 views

Design/Logic Flaw

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

6.8CVSS7.7AI score0.01483EPSS
Exploits1References5Affected Software5
OSV
OSV
added 2018/11/14 3:29 p.m.4 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.4AI score0.01483EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2018/11/14 3:29 p.m.25 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.2AI score0.01483EPSS
Exploits1References2
OSV
OSV
added 2018/11/14 3:29 p.m.3 views

UBUNTU-CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

8.8CVSS7.3AI score0.01483EPSS
Exploits1References3
CVE
CVE
added 2018/11/14 3:0 p.m.155 views

CVE-2018-6057

CVE-2018-6057 affects Google Chrome/Chromium prior to 65.0.3325.146, due to improper permissions handling of shared memory (ashmem). The issue permitted a renderer-compromised page to bypass inter-process read-only guarantees. Public documents confirm the vulnerability and list Chrome/Chromium 65...

8.8CVSS7.5AI score0.01483EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2018/11/14 3:0 p.m.32 views

CVE-2018-6057

Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page...

7.7AI score0.01483EPSS
Exploits1References5
NVD
NVD
added 2018/06/15 8:29 p.m.16 views

CVE-2017-18169

User process can perform the kernel DOS in ashmem when doing cache maintenance operation in all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

5.5CVSS5.2AI score0.00148EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2018/06/15 8:29 p.m.26 views

CVE-2017-18169

User process can perform the kernel DOS in ashmem when doing cache maintenance operation in all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

5.5CVSS6.1AI score0.00148EPSS
Exploits0References2
Prion
Prion
added 2018/06/15 8:29 p.m.16 views

Design/Logic Flaw

User process can perform the kernel DOS in ashmem when doing cache maintenance operation in all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

4.9CVSS5.2AI score0.00148EPSS
Exploits0References1
OSV
OSV
added 2018/06/15 8:29 p.m.4 views

UBUNTU-CVE-2017-18169

User process can perform the kernel DOS in ashmem when doing cache maintenance operation in all Android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the Linux kernel...

5.5CVSS6AI score0.00148EPSS
Exploits0References3
Rows per page
Query Builder