CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Positive Technologies•added 2022/11/25 12:0 a.m.•1 views

PT-2022-26156 · Nextcloud · Nextcloud Talk Android

Name of the Vulnerable Software and Affected Versions: Nextcloud Talk Android versions prior to 14.1.0 Description: The issue affects the Nextcloud Talk Android, which is the Android OS implementation of the Nextcloud Talk chat system. In affected versions, the receiver is not protected by...

5.5CVSS5.3AI score0.00074EPSS

Exploits0References6

CVE•added 2022/11/25 12:0 a.m.•59 views

CVE-2022-41926

CVE-2022-41926 concerns the Nextcloud Talk Android app. The receiver component is not protected by broadcastPermission in affected versions, enabling a malicious app to monitor communication locally. The issue is tied to Nextcloud Talk Android prior to 14.1.0. Remediation in all sources is to upg...

5.5CVSS4.6AI score0.00074EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2022/11/25 12:0 a.m.•5 views

CVE-2022-41926 Nextcloud Talk Android broadcast incorrect permission handling

Nextcould talk android is the android OS implementation of the nextcloud talk chat system. In affected versions the receiver is not protected by broadcastPermission allowing malicious apps to monitor communication. It is recommended that the Nextcloud Talk Android is upgraded to 14.1.0. There are...

3.3CVSS5.5AI score0.00074EPSS

Exploits0References3

NVD•added 2022/06/06 5:15 p.m.•13 views

CVE-2022-31481

An unauthenticated attacker can send a specially crafted update file to the device that can overflow a buffer. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.302 for the LP seri...

10CVSS0.0124EPSS

Exploits0References1

Prion•added 2022/06/06 5:15 p.m.•17 views

Design/Logic Flaw

An authenticated attacker can send a specially crafted route to the “editroute.cgi” binary and have it execute shell commands. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmware versions prior to 1.303...

9CVSS8.9AI score0.00978EPSS

Exploits0References1Affected Software14

Kitploit•added 2018/09/30 9:25 p.m.•157 views

Kemon - An Open-Source Pre And Post Callback-Based Framework For macOS Kernel Monitoring

An Open-Source Pre and Post Callback-Based Framework for macOS Kernel Monitoring. What is Kemon? An open-source Pre and Post callback-based framework for macOS kernel monitoring. With the power of Kemon, we can easily implement LPC communication monitoring, MAC policy filtering, kernel driver...

7.8CVSS7.8AI score0.00229EPSS

Exploits0References1

n0where•added 2018/08/21 6:47 p.m.•156 views

An Open-Source Pre and Post Callback-Based Framework for macOS Kernel Monitoring: Kemon

If third-party vendors want to add new features to the macOS kernel, such as antivirus capabilities, ransomware blocking, data breach auditing, behavior monitoring and so on, they usually need the support of the system’s exported interfaces. At present, only two known official interfaces are...

9.3CVSS0.9AI score0.00229EPSS

Exploits0References2