Lucene search
K

213 matches found

RedhatCVE
RedhatCVE
added 2026/02/08 1:3 p.m.15 views

CVE-2026-1675

The Advanced Country Blocker plugin for WordPress is vulnerable to Authorization Bypass in all versions up to, and including, 2.3.1 due to the use of a predictable default value for the secret bypass key created during installation without requiring users to change it. This makes it possible for...

5.3CVSS5.4AI score0.00342EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:15 a.m.9 views

CVE-2019-2120

In OatFileAssistant::GenerateOatFile of oatfileassistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...

7.8CVSS7.4AI score0.00173EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:36 a.m.8 views

CVE-2024-34734

In onForegroundServiceButtonClicked of FooterActionsViewModel.kt, there is a possible way to disable the active VPN app from the lockscreen due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

7.8CVSS7.1AI score0.00086EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an improperly set default value when creating a CQ in mlx5, which could lead to a null pointer exception...

6AI score0.00155EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/09 5:27 p.m.4 views

CVE-2025-48629

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS6.8AI score0.00072EPSS
Exploits0References1
NVD
NVD
added 2025/12/08 5:16 p.m.22 views

CVE-2025-48629

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS0.00072EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/08 4:57 p.m.2 views

CVE-2025-48629

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

6.4AI score0.00072EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/08 4:57 p.m.21 views

CVE-2025-48629

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

0.00072EPSS
Exploits0References1
CVE
CVE
added 2025/12/08 4:57 p.m.16 views

CVE-2025-48629

CVE-2025-48629 affects the Android framework component in which the insecure default for the default speech recognizer app can be exploited via the VoiceInteractionManagerService.findAvailRecognizer. The root cause is an insecure default value in this method, enabling local privilege escalation w...

7.8CVSS6.4AI score0.00072EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/12/01 12:0 a.m.10 views

ASB-A-352518318

In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS6.7AI score0.00072EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/11/14 12:24 a.m.5 views

SUSE CVE-2025-40154

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

6.4CVSS6.5AI score0.00175EPSS
Exploits0References30
RedhatCVE
RedhatCVE
added 2025/11/13 2:56 p.m.1 views

CVE-2025-40154

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

7CVSS5.4AI score0.00175EPSS
Exploits0References4
EUVD
EUVD
added 2025/11/12 12:30 p.m.2 views

EUVD-2025-124929

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

5.8AI score0.00175EPSS
Exploits0References9
NVD
NVD
added 2025/11/12 11:15 a.m.5 views

CVE-2025-40121

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5651: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver just ignores and leaves as is, which may lead to unepxected results like OOB access. This...

0.00192EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 11:15 a.m.6 views

UBUNTU-CVE-2025-40154

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

5.7AI score0.00175EPSS
Exploits0References40
Cvelist
Cvelist
added 2025/11/12 10:23 a.m.6 views

CVE-2025-40154 ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

0.00175EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 10:23 a.m.3 views

CVE-2025-40154 ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error message but leaves as is. This may lead to unepxected results like OOB...

6.1AI score0.00175EPSS
Exploits0References11
CVE
CVE
added 2025/11/12 10:23 a.m.19 views

CVE-2025-40121

CVE-2025-40121 affects the Linux kernel ASoC Intel bytcr_rt5651 driver. The issue arises when an invalid value is passed to the quirk option, previously causing the bytcr_rt5651/bytcr_rt5640 path to ignore the invalid input and proceed with potentially unsafe mappings. The patch adds a sanity che...

5.9AI score0.00192EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 10:23 a.m.3 views

CVE-2025-40121 ASoC: Intel: bytcr_rt5651: Fix invalid quirk input mapping

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcrrt5651: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver just ignores and leaves as is, which may lead to unepxected results like OOB access. This...

6.2AI score0.00192EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-40154

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcrrt5640 driver only shows an error...

7AI score0.00175EPSS
Exploits0References3
Rows per page
Query Builder