75 matches found
CVE-2019-2006
In serviceDied of HalDeathHandlerHidl.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege in the audio server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
EUVD-2019-11738
Malware in sbrugna...
EUVD-2020-1596
Malware in sbrugna...
EUVD-2019-11648
Malware in sbrugna...
EUVD-2019-11649
Malware in sbrugna...
EUVD-2017-4749
Malware in sbrugna...
EUVD-2023-33942
Malicious code in bioql PyPI...
EUVD-2022-25799
Malicious code in bioql PyPI...
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a remote attacker to potentially exploit heap corruption via crafted audio file. Chromium security severity: High...
CVE-2022-2587
Out of bounds write in Chrome OS Audio Server in Google Chrome on Chrome OS prior to 102.0.5005.125 allowed a remote attacker to potentially exploit heap corruption via crafted audio metadata...
CVE-2022-20539
In parameterToHal of Effect.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the audio server with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2020-0089
In the audio server, there is a missing permission check. This could lead to local escalation of privilege regarding audio settings with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-137015603...
PT-2024-31349 · Lollms +1 · Lollms +2
Name of the Vulnerable Software and Affected Versions: lollms version 9.6 Description: A Cross-Site Request Forgery CSRF vulnerability exists in the XTTS server due to a lax CORS policy, allowing attackers to perform unauthorized actions by tricking a user into visiting a malicious webpage. This...
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a remote attacker to potentially exploit heap corruption via crafted audio file. Chromium security severity: High...
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a remote attacker to potentially exploit heap corruption via crafted audio file. Chromium security severity: High...
Design/Logic Flaw
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a remote attacker to potentially exploit heap corruption via crafted audio file. Chromium security severity: High...
CVE-2023-2457
The CVE-2023-2457 issue is an out-of-bounds/write condition in the ChromeOS Audio Server on ChromeOS, linked to heap corruption via a crafted audio file. Affected product: ChromeOS Audio Server within Google Chrome on ChromeOS, with the vulnerability described as present in versions prior to 113....
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a remote attacker to potentially exploit heap corruption via crafted audio file. Chromium security severity: High...
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS prior to 113.0.5672.114 allowed a remote attacker to potentially exploit heap corruption via crafted audio file. Chromium security severity: High...
PT-2023-2771 · Google +1 · Google Chrome +1
Name of the Vulnerable Software and Affected Versions: Google Chrome on ChromeOS versions prior to 113.0.5672.114 Description: The issue is caused by an out of bounds write in the ChromeOS Audio Server, allowing a remote attacker to potentially exploit heap corruption via a crafted audio file. Th...