UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Zilight Zhanrui UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of privilege checking in the Ifaa service, leading to the disclosure of local information...

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Zilight Zhanrui UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of boundary checking in the faceid service, resulting in a local denial of service...

Google Android Information Disclosure Vulnerability (CNVD-2023-101642)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability, which is caused by a lack of permission checking in Slice. The vulnerability can be exploited by an attacker to obtain sensitive information...

Google Android elevation of privilege vulnerability (CNVD-2023-96680)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that stems from a lack of bounds checking in libdexfile, which can be exploited by an attacker to cause an elevation of privilege...

Google Android elevation of privilege vulnerability (CNVD-2023-96687)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that stems from a lack of privilege checking, which can be exploited by an attacker to cause an elevation of privilege...

Google Android Information Disclosure Vulnerability (CNVD-2024-01356)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability caused by a lack of permission checking in the content parsing program. An attacker can exploit this vulnerability to obtain sensitive information...

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of privilege checking in validationtools, leading to the disclosure of local information...

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of privilege checking in validationtools, leading to the disclosure of local information...

CVE-2023-46813

An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses could lead to arbitrary write access to kernel memory and th...

Security Bulletin: IBM® Db2® db2set is vulnerable to arbitrary code execution. (CVE-2023-30431)

Summary IBM® Db2® db2set is vulnerable to arbitrary code execution. Vulnerability Details CVEID: CVE-2023-30431 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server db2set is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow th...

[SECURITY] Fedora 38 Update: roundcubemail-1.6.4-1.fc38

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

The vulnerability of the printer web page module (ARM) of Honeywell PM43, which allows a intruder to execute arbitrary commands

The vulnerability of the printer web page module ARM of Honeywell PM43 is related to insufficient checking of arguments passed in commands. Exploiting this vulnerability can allow a remote attacker to execute arbitrary commands...

Ubuntu 16.04 ESM : Mercurial vulnerabilities (USN-5102-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5102-2 advisory. USN-5102-1 fixed vulnerabilities in Mercurial. This update provides the corresponding updates for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has...

php: phar Buffer mismanagement

A flaw was found in PHP that can lead to a buffer overflow and a stack information leak due to improper bounds checking within the phardirread function. This issue may allow an attacker to initiate memory corruption by compelling the application to open a specially crafted .phar archive, allowing...

Who’s Responsible for the Gaza Hospital Explosion? Here’s Why It’s Hard to Know What’s Real

A flood of false information, partisan narratives, and weaponized “fact-checking" has obscured efforts to find out who’s responsible for an explosion at a hospital in Gaza...

The vulnerability of the Packet Forwarding Engine (PFE) module of Juniper Networks’ Junos OS allows a hacker to trigger a service failure.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS is related to insufficient checking of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of Fortinet FortiManager’s centralized device management system lies in the insufficient checking of arguments passed in commands, allowing an attacker to execute arbitrary commands or code.

The vulnerability of Fortinet FortiManager’s centralized device management system lies in insufficient checking of arguments passed in commands. Exploiting this vulnerability allows an attacker to execute arbitrary commands or code...

CVE-2023-26318

CVE-2023-26318 affects Xiaomi Router web interface. The connected sources describe a post-authorization stack/buffer overflow caused by a buffer copy without checking input size (boundary error in input handling). The vulnerability can overflow buffers in the Xiaomi Router; explicit exploit detai...

Google Pixel Buffer Error Vulnerability

Google Pixel is a smartphone from Google Inc. in the United States. Google Pixel suffers from a security vulnerability that stems from a lack of bounds checking in the ProtocolMiscLceIndAdapter::GetConfLevel method of protocolmiscadapter.cpp, which may result in out-of-bounds reads. This could le...

Google Pixel Buffer Error Vulnerability

Google Pixel is a smartphone from Google Inc. in the United States. Google Pixel suffers from a security vulnerability that stems from a lack of bounds checking in the ProtocolEmbmsGlobalCellIdAdapter::Init method of protocolembmsadapter.cpp, which may result in out-of-bounds reads. This could le...