Lucene search
K

7654 matches found

CNVD
CNVD
added 2022/04/20 12:0 a.m.6 views

Google Android Buffer Overflow Vulnerability (CNVD-2022-44614)

Google Android, a Linux-based open source operating system from Google, is vulnerable to buffer overflow. The vulnerability originates in the TitanM chip, where out-of-bounds writes may occur due to a lack of boundary checking. An attacker could exploit the vulnerability to cause a local privileg...

6.7CVSS4.1AI score0.00106EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/19 12:0 a.m.13 views

Google Android Information Disclosure Vulnerability (CNVD-2022-44585)

Google Android is a Linux-based open source operating system from Google, Inc. An information disclosure vulnerability exists in Google Android, which originates in LoadedPackage::Load in LoadedArsc.cpp, and due to a lack of boundary checking, an out-of-bounds read may occur. read. An attacker...

5.5CVSS2.7AI score0.00124EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/04/15 2:20 p.m.11 views

CVE-2022-20747 Cisco SD-WAN vManage Software Information Disclosure Vulnerability

A vulnerability in the History API of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain access to sensitive information on an affected system. This vulnerability is due to insufficient API authorization checking on the underlying operating system. An attacker cou...

6.5CVSS6.7AI score0.00852EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/15 12:0 a.m.21 views

Google Android has an unspecified vulnerability (CNVD-2022-55157)

Google Android is a Linux-based open source operating system from Google, Inc. A security vulnerability exists in Google Android, which stems from a lack of permission checking in the setup of AndroidManifest.xml, which could allow pairing of Bluetooth devices without user consent. An attacker...

8.8CVSS3.9AI score0.00205EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/15 12:0 a.m.33 views

Jenkins Publish Over FTP Plugin授权问题漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application. jenkins Publish Over FTP Plugin 1.16 an...

4.3CVSS1.4AI score0.0072EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/15 12:0 a.m.19 views

Google Android Buffer Overflow Vulnerability (CNVD-2022-46292)

Google Android is a Linux-based open source operating system from Google, Inc. Google Android has a buffer overflow vulnerability that originates from a lack of boundary checking in Bluetooth, which could lead to out-of-bounds writes and could be exploited by attackers to cause local privilege...

7.8CVSS5.7AI score0.00146EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/13 12:0 a.m.24 views

Samsung SMR Buffer Overflow Vulnerability (CNVD-2022-63635)

Samsung SMR is a system patch package from South Korea's Samsung Samsung. It provides patches for Samsung mobile applications. Samsung SMR suffers from a buffer overflow vulnerability that stems from incorrect size checking of the in-sapefdparsemetaDESCRIPTION function of the libsapeextractor...

7.1CVSS4.4AI score0.0029EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/13 12:0 a.m.20 views

Samsung SMR Buffer Overflow Vulnerability (CNVD-2022-63633)

Samsung SMR is a system patch package from South Korea's Samsung Samsung. It provides patches for Samsung mobile applications. buffer overflow vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from incorrect size checking in the sapefdparsemetaHEADER function o...

7.1CVSS4.2AI score0.00234EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.4 views

多款 MediaTek 产品缓冲区错误漏洞

MediaTek chips are a variety of chips from MediaTek, a division of China's MediaTek Mediatek. A security vulnerability exists in several MediaTek products, which stems from a lack of boundary checking in ccci, which may result in out-of-bounds reads...

6.7CVSS6.6AI score0.00113EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.3 views

Mediatek MediaTek 芯片 缓冲区错误漏洞

MediaTek chips are various chips from MediaTek, a Chinese company MediaTek. A buffer error vulnerability exists in several MediaTek products that stems from a lack of boundary checking in ssmr, which could result in out-of-bounds writes...

6.7CVSS6.8AI score0.00111EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.3 views

Samsung SMR 缓冲区错误漏洞

Samsung SMR is a system patch package from South Korea's Samsung Samsung. A buffer overflow vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from incorrect boundary checking in libsflvextractor's sflvdrdbufbits function. An attacker could exploit this...

4.4CVSS5.9AI score0.00095EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2022/04/08 12:0 a.m.334 views

AeroCMS 0.0.1 Shell Upload

AeroCMS-Unrestricted-File-Upload-POC Author: D4rkP0w4r Description = Upload web shell at Post Image in admin panel Step to Reproduct Login to admin panel - Posts - Add Posts - Post Image - upload malicious file shell.php - access /images/shell.php on url - shell.php page Exploit When upload succe...

0.02504EPSS
Exploits3
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.3 views

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Zilight Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a lack of boundary checking in the wifi service, which may result in out-of-bounds writes...

5.5CVSS5.7AI score0.00099EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.3 views

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Zilight Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a lack of boundary checking in the wifi service, which may result in out-of-bounds writes...

5.5CVSS5.7AI score0.00099EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.5 views

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Zilight Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a lack of boundary checking in the wifi service, which may result in out-of-bounds writes...

5.5CVSS5.7AI score0.00099EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/04/07 12:0 a.m.92 views

macOS 12.x < 12.3.1 (HT213220)

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.3.1 Monterey. It is, therefore, affected by multiple vulnerabilities : - An out-of-bounds read issue may lead to the disclosure of kernel memory and was addressed with improved input validation. CVE-2022-22674 - An...

9.3CVSS7.2AI score0.12642EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2022/04/06 9:21 p.m.141 views

USN-5368-1: Linux kernel vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-23222 It was discovered that the network traffic contro...

9.1CVSS7.8AI score0.67994EPSS
Exploits29
CNVD
CNVD
added 2022/04/01 12:0 a.m.12 views

Google Android Information Disclosure Vulnerability (CNVD-2022-26780)

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that stems from a lack of permission checking in voice mail. An attacker could use this vulnerability to obtain sensitive information...

5.5CVSS1.9AI score0.00297EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.14 views

Google Android Information Disclosure Vulnerability (CNVD-2022-44591)

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that stems from a lack of permission checking in Framework. An attacker could use this vulnerability to obtain sensitive information...

5.5CVSS1.8AI score0.00098EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/01 12:0 a.m.11 views

Google Android Information Disclosure Vulnerability (CNVD-2022-28916)

Google Android is a Linux-based open source operating system from Google, Inc. Google Android is vulnerable to an information disclosure vulnerability that stems from a lack of permission checking in Telephony. An attacker could use this vulnerability to obtain sensitive information...

5.5CVSS1.7AI score0.00104EPSS
Exploits0References1
Rows per page
Query Builder