Lucene search
K

133 matches found

OSV
OSV
added 2017/01/12 8:59 p.m.2 views

CVE-2016-8446

An elevation of privilege vulnerability in MediaTek components, including the thermal driver and video driver, could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged...

7CVSS6.1AI score0.00548EPSS
Exploits0References2
NVD
NVD
added 2017/01/12 8:59 p.m.20 views

CVE-2016-8450

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...

7.6CVSS6.4AI score0.01324EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/01/12 8:0 p.m.26 views

CVE-2016-8456

An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...

6.7AI score0.01523EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/01/12 8:0 p.m.30 views

CVE-2017-0403

An elevation of privilege vulnerability in the kernel performance subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...

7.6CVSS6.7AI score0.01624EPSS
Exploits0
NVD
NVD
added 2017/01/12 3:59 p.m.20 views

CVE-2016-6783

An elevation of privilege vulnerability in the MediaTek driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: N/A. Android I...

9.3CVSS6.4AI score0.00559EPSS
Exploits0References2
NVD
NVD
added 2017/01/12 3:59 p.m.19 views

CVE-2016-8403

An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...

4.7CVSS3.7AI score0.01046EPSS
Exploits0References2
Prion
Prion
added 2017/01/12 3:59 p.m.16 views

Information disclosure

An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...

4.3CVSS5.6AI score0.01046EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/01/12 3:59 p.m.50 views

Privilege escalation

An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and current compiler...

7.6CVSS7AI score0.02341EPSS
Exploits0References7Affected Software1
canvas
canvas
added 2016/12/17 3:59 a.m.523 views

Immunity Canvas: APPORT_CRASH_HANDLER

Name| apportcrashhandler ---|--- CVE| CVE-2016-9949 Exploit Pack| CANVAS Description| Ubuntu Apport Crash Handler RCE Notes| CVE Name: CVE-2016-9949 Vendor: Ubuntu Notes: This module creates a crafted Apport crash file report that seems to be a simple text file. When the text file is double click...

9.3CVSS0.6AI score0.17726EPSS
Exploits6
UbuntuCve
UbuntuCve
added 2016/11/25 4:59 p.m.33 views

CVE-2016-6744

An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process...

9.3CVSS7.3AI score0.00724EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/11/25 4:59 p.m.37 views

CVE-2016-6739

An elevation of privilege vulnerability in the Qualcomm camera driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Androi...

9.3CVSS7.3AI score0.00649EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/11/25 4:59 p.m.26 views

CVE-2016-6745

An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process...

9.3CVSS7.3AI score0.00724EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/11/25 4:59 p.m.39 views

CVE-2016-6752

An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as...

5.5CVSS6.5AI score0.00367EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/11/25 4:59 p.m.34 views

CVE-2016-6742

An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process...

9.3CVSS7.3AI score0.00724EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/11/25 4:0 p.m.23 views

CVE-2016-6741

An elevation of privilege vulnerability in the Qualcomm camera driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Androi...

7.2AI score0.00724EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/11/25 4:0 p.m.35 views

CVE-2016-6742

An elevation of privilege vulnerability in the Synaptics touchscreen driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process...

7.2AI score0.00724EPSS
Exploits0References2
Huawei
Huawei
added 2016/08/10 12:0 a.m.25 views

Security Advisory - A Security Vulnerability of Using Insecure Random Numbers to Generate Self-signed Certificates in Huawei Products

Some Huawei products automatically generate self-signed certificates upon the first use. The random numbers used to generate these certificates are not random enough. Different devices' certificates may use the same random number consequently, which contains the risk of an attacker compromising t...

5.3CVSS5.3AI score0.00832EPSS
Exploits0Affected Software12
Kitploit
Kitploit
added 2015/12/19 9:14 p.m.44 views

Domi-Owned - Tool Used for Compromising IBM/Lotus Domino Servers

Domi-Owned is a tool used for compromising IBM/Lotus Domino servers. Tested on IBM/Lotus Domino 8.5.2, 8.5.3, 9.0.0, and 9.0.1 running on Windows and Linux. Usage A valid username and password is not required unless 'names.nsf' and/or 'webadmin.nsf' requires authentication. Fingerprinting Running...

7.5AI score
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

SolucionXpressPro 'main.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33111/info SolucionXpressPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

JAWS 0.2/0.3/0.4 ControlPanel.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10826/info JAWS is reportedly affected by a remote SQL injection vulnerability. This issue occurs in the controlpanel.php script due to a failure of the application to properly sanitize user-supplied URI parameter input...

7.1AI score
Exploits0
Rows per page
Query Builder