68 matches found
CVE-2022-32530
A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists that could cause users to be misled, hiding alarms, showing the wrong server connection option or the wrong control request when a mobile device has been compromised by a malicious application. Affected Product: Geo SCADA Mobile...
CVE-2022-32530
A CWE-668 Exposure of Resource to Wrong Sphere vulnerability exists that could cause users to be misled, hiding alarms, showing the wrong server connection option or the wrong control request when a mobile device has been compromised by a malicious application. Affected Product: Geo SCADA Mobile...
Malicious code in eks-auto-create-idp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware abe5220ea6202484d070bbe62ba66ccb40f7d0b230bcfb2a4208d4aec4877ac7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sifchain-changes-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 470b810e277ad42e0ef37f50e0810a03036d93b46fe39e9265979c921a16d162 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in azure-arm-workspaces-samples-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25fdf3e3810b11986993e1ee312d73c2be2e122399ae83f6c577f58853782c50 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @medv/codejar (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c962e96873002b9e543389d0be501647e9378f55cc8a50075a3f1643fc6d0a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Detecting and preventing privilege escalation attacks leveraging Kerberos relaying (KrbRelayUp)
On April 24, 2022, a privilege escalation hacking tool, KrbRelayUp, was publicly disclosed on GitHub by security researcher Mor Davidovich. KrbRelayUp is a wrapper that can streamline the use of some features in Rubeus, KrbRelay, SCMUACBypass, PowerMad/SharpMad, Whisker, and ADCSPwn tools in...
QNAP QTS Zerologon Vulnerability
QNAP QTS is prone to the Zerologon vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; if description...
CVE-2020-0165
In phNxpNciHalNfcDepcmdext of phNxpNciHalNfcDepSWPrio.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege via compromised device firmware with System execution privileges needed. User interaction is not needed for...
CVE-2020-0147
In btuhcifescoconnectionchgevt of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2020-0145
In btmsimplepaircomplete of btmsec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2020-0144
In btmprocspreqevt of btmsec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2020-0149
In btuhcifmodechangeevt of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...
Out-of-bounds
In btmprocspreqevt of btmsec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
Out-of-bounds
In phNxpNciHalNfcDepcmdext of phNxpNciHalNfcDepSWPrio.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege via compromised device firmware with System execution privileges needed. User interaction is not needed for...
Out-of-bounds
In btuhcifpincoderequestevt, btuhciflinkkeyrequestevt, and btuhciflinkkeynotificationevt of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. Us...
Out-of-bounds
In btmsimplepaircomplete of btmsec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...
Out-of-bounds
In nfadmndeffindnexthandler of nfadmndef.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of heap data via compromised device firmware with System execution privileges needed. User interaction is not needed for...
Out-of-bounds
In btuhcifmodechangeevt of btuhcif.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2020-0145
In btmsimplepaircomplete of btmsec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is not needed for exploitation.Product:...