CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Hacker News•added 2020/09/30 9:29 a.m.•2 views

Chinese APT Group Targets Media, Finance, and Electronics Sectors

Cybersecurity researchers on Tuesday uncovered a new espionage campaign targeting media, construction, engineering, electronics, and finance sectors in Japan, Taiwan, the U.S., and China. Linking the attacks to Palmerworm aka BlackTech — likely a China-based advanced persistent threat APT —...

5.8AI score

Zero Science Lab•added 2020/09/30 12:0 a.m.•236 views

Sony IPELA Network Camera (ftpclient.cgi) Remote Stack Buffer Overflow

Summary IPELA is Sony's vision of the ultimate workplace, designed to revolutionize the way business communicates over global IP networks. IPELA products can improve the efficiency of your organization by connecting people and places with high-quality audio and video. The SNC-DH120T is an indoor...

6.5AI score

Openbugbounty•added 2020/09/23 2:26 p.m.•7 views

ralfe-electronics.co.uk Cross Site Scripting vulnerability OBB-1359133

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score

OSV•added 2020/09/14 12:15 p.m.•3 views

CVE-2020-7807

A vulnerability that can hijack a DLL file that is loaded during productsLGPCSuiteSetup, IPSFULLHD, LGULTRAWIDE, ULTRAHDDriver Setup installation into a DLL file that the hacker wants. Missing Support for Integrity Check vulnerability in COMPONENT of LG Electronics LGPCSuiteSetup, IPSFULLHD,...

5.5CVSS6.1AI score0.00189EPSS

NVD•added 2020/09/14 12:15 p.m.•12 views

CVE-2020-7807

5.6CVSS0.00189EPSS

Prion•added 2020/09/14 12:15 p.m.•14 views

Design/Logic Flaw

1.9CVSS5.5AI score0.00189EPSS

Exploits0References2Affected Software4

Cvelist•added 2020/09/14 11:55 a.m.•21 views

CVE-2020-7807 DLL Hijacking Vulnerabilities During Installation of LG Electronics Software

5.6CVSS5.6AI score0.00189EPSS

CVE•added 2020/09/14 11:55 a.m.•40 views

CVE-2020-7807

CVE-2020-7807 maps to a DLL hijacking vulnerability during installation of LG Electronics software. Affected components are LGPCSuite_Setup (Windows x86/x64) 1.0.0.3 and related installers IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup (Windows x86/x64) 1.0.0.9. The root cause is “Missing Support...

5.6CVSS5.5AI score0.00189EPSS

Exploits0References2Affected Software4

NVD•added 2020/09/08 10:15 a.m.•18 views

CVE-2020-3669

u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...

10CVSS9.4AI score0.01111EPSS

NVD•added 2020/09/08 10:15 a.m.•14 views

CVE-2020-3621

u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics...

5.5CVSS5.7AI score0.0022EPSS

NVD•added 2020/09/08 10:15 a.m.•19 views

CVE-2020-3666

u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrago...

7.8CVSS7.8AI score0.00212EPSS

Prion•added 2020/09/08 10:15 a.m.•18 views

Buffer overflow

u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag...

10CVSS9.5AI score0.01052EPSS

Cvelist•added 2020/09/08 9:31 a.m.•21 views

CVE-2020-3666

7.8AI score0.00212EPSS

CVE•added 2020/09/08 9:31 a.m.•55 views

CVE-2020-3666

CVE-2020-3666 is described as an out-of-bounds memory access during memory copy while processing a Host command, affecting a wide range of Snapdragon platforms (e.g., APQ8009/8017/8053/8096AU/8098, IPQ4019/6018/8064/8074, MDM9xxx, MSM89xx, QCA and related SDX/SXR devices) across Snapdragon Auto, ...

7.8CVSS7.7AI score0.00212EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/09/08 9:31 a.m.•34 views

CVE-2020-3620

u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,...

5.8AI score0.00187EPSS

Cvelist•added 2020/09/08 9:31 a.m.•21 views

CVE-2020-3621

5.7AI score0.0022EPSS

Cvelist•added 2020/09/08 9:31 a.m.•24 views

CVE-2020-11118

u'Information exposure issues while processing IE header due to improper check of beacon IE frame' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.7AI score0.00663EPSS