Lucene search
+L

32 matches found

Cvelist
Cvelist
added 2019/11/14 4:27 p.m.27 views

CVE-2019-15467

The Xiaomi Mi Mix 2S Android device with a build fingerprint of Xiaomi/polaris/polaris:8.0.0/OPR1.170623.032/V9.5.19.0.ODGMIFA:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app versionCode=1, versionName=A2060201801032053 that allows unauthorized wireles...

3.8AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/14 4:26 p.m.26 views

CVE-2019-15424

The Doogee BL5000 Android device with a build fingerprint of DOOGEE/BL5000/BL5000:7.0/NRD90M/1497072355:user/release-keys contains a pre-installed app with a package name of com.mediatek.factorymode app versionCode=1, versionName=1 that allows unauthorized wireless settings modification via a...

3.8AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/14 4:26 p.m.27 views

CVE-2019-15421

The Blackview BV7000Pro Android device with a build fingerprint of Blackview/BV7000Pro/BV7000Pro:7.0/NRD90M/1493011204:user/release-keys contains a pre-installed app with a package name of com.mediatek.factorymode app versionCode=1, versionName=1 that allows unauthorized wireless settings...

3.8AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/14 4:26 p.m.20 views

CVE-2019-15418

The Asus ASUSX00K1 Android device with a build fingerprint of asus/CNX00K/ASUSX00K1:7.0/NRD90M/CNX00K-14.01.1711.27-20180420:user/release-keys contains a pre-installed app with a package name of com.lovelyfont.defcontainer app versionCode=5, versionName=5.0.1 that allows unauthorized command...

7.5AI score0.00449EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/14 4:26 p.m.30 views

CVE-2019-15415

The Xiaomi Redmi 5 Android device with a build fingerprint of xiaomi/vince/vince:7.1.2/N2G47H/V9.5.4.0.NEGMIFA:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app versionCode=1, versionName=QL1711201803291645 that allows unauthorized wireless settings...

3.8AI score0.00277EPSS
Exploits0References1
Prion
Prion
added 2019/04/25 8:29 p.m.19 views

Design/Logic Flaw

The Coolpad Defiant device with a build fingerprint of Coolpad/cp3632a/cp3632a:7.1.1/NMF26F/099480857:user/release-keys, the ZTE ZMAX Pro with a build fingerprint of ZTE/P895T20/urd:6.0.1/MMB29M/20170418.114928:user/release-keys, and the T-Mobile Revvl Plus with a build fingerprint of...

5CVSS7.4AI score0.01829EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/04/25 7:35 p.m.26 views

CVE-2018-14996

The Oppo F5 Android device with a build fingerprint of OPPO/CPH1723/CPH1723:7.1.1/N6F26Q/1513597833:user/release-keys contains a pre-installed platform app with a package name of com.dropboxchmod versionCode=1, versionName=1.0 that contains an exported service named...

7.7AI score0.00518EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/04/25 7:27 p.m.19 views

CVE-2018-14980

The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/USPhone/ASUSX0081:7.0/NRD90M/USPhone-14.14.1711.92-20171208:user/release-keys contains the android framework i.e., systemserver with a package name of android versionCode=24, versionName=7.0 that has been modified by ASUS or...

6.7AI score0.00358EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/12/28 9:0 p.m.19 views

CVE-2018-15002

The Vivo V7 device with a build fingerprint of vivo/1718/1718:7.1.2/N2G47H/compil11021857:user/release-keys allows any app co-located on the device to set system properties as the com.android.phone user. The com.qualcomm.qti.modemtestmode app versionCode=25, versionName=7.1.2 that contains an...

4.7AI score0.00296EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/12/03 5:34 p.m.9 views

kubernetes: authentication/authorization bypass in the handling of non-101 responses

A privilege escalation vulnerability exists in OpenShift Container Platform which allows for compromise of pods running co-located on a compute node. This access could include access to all secrets, pods, environment variables, running pod/container processes, and persistent volumes, including in...

9.8CVSS7.4AI score0.86978EPSS
Exploits10References6
RedHat Linux
RedHat Linux
added 2018/11/20 3:11 a.m.8 views

kubernetes: authentication/authorization bypass in the handling of non-101 responses

A privilege escalation vulnerability exists in OpenShift Container Platform which allows for compromise of pods running co-located on a compute node. This access could include access to all secrets, pods, environment variables, running pod/container processes, and persistent volumes, including in...

9.8CVSS7.4AI score0.86978EPSS
Exploits10References6
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.3 views

nettle: RSA/DSA code is vulnerable to cache-timing related attacks

It was found that nettle's RSA and DSA decryption code was vulnerable to cache-related side channel attacks. An attacker could use this flaw to recover the private key from a co-located virtual-machine instance...

7.5CVSS7.4AI score0.05007EPSS
Exploits0References4
Rows per page
Query Builder