CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

ATTACKERKB•added 2026/01/23 12:0 a.m.•2 views

CVE-2025-67264

An OS command injection vulnerability in the com.sprd.engineermode component in Doogee Note59, Note59 Pro, and Note59 Pro+ allows a local attacker to execute arbitrary code and escalate privileges via the EngineerMode ADB shell, due to incomplete patching of CVE-2025-31710...

8.4CVSS6.2AI score0.00024EPSS

Exploits2References3

Positive Technologies•added 2026/01/23 12:0 a.m.•5 views

PT-2026-4525

Name of the Vulnerable Software and Affected Versions Doogee Note59 Doogee Note59 Pro Doogee Note59 Pro+ affected versions not specified Description A flaw exists within the com.sprd.engineermode component that could allow a local attacker to execute arbitrary code and escalate privileges. This i...

7.8CVSS5.9AI score0.00024EPSS

Exploits2References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-37104

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00021EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25109

Malicious code in bioql PyPI...

8.4CVSS6.6AI score0.00105EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-47081

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.0004EPSS

Exploits0References1

RedhatCVE•added 2025/08/20 1:38 a.m.•2 views

CVE-2025-31713

In engineer mode service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

8.4CVSS8AI score0.00105EPSS

Exploits0References1

NVD•added 2025/08/18 1:15 a.m.•2 views

CVE-2025-31713

In engineer mode service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

8.4CVSS0.00105EPSS

Exploits0References1

Vulnrichment•added 2025/08/18 12:34 a.m.•2 views

CVE-2025-31713

In engineer mode service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

8.4CVSS7.9AI score0.00105EPSS

Exploits0References1

Cvelist•added 2025/08/18 12:34 a.m.•5 views

CVE-2025-31713

In engineer mode service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

8.4CVSS0.00105EPSS

Exploits0References1

CVE•added 2025/08/18 12:34 a.m.•14 views

CVE-2025-31713

CVE-2025-31713 concerns UNISOC chipsets where the engineer mode service is vulnerable to command injection due to insufficient input validation. This can lead to local escalation of privilege with no additional execution privileges required. Affected: Unisoc chipsets SL8521E, SL8541E (per PT‑Secu...

8.4CVSS7.9AI score0.00105EPSS

Exploits0References1

Positive Technologies•added 2025/08/18 12:0 a.m.•3 views

PT-2025-33624 · Mocor5 +2 · Mocor5 +3

Name of the Vulnerable Software and Affected Versions: Unisoc chipsets SL8521E, SL8541E Android 8.1 on Mocor5 Description: The engineer mode service is susceptible to a command injection due to insufficient input validation. This issue may allow for local privilege escalation without requiring...

8.4CVSS7.3AI score0.00105EPSS

Exploits0References11

RedhatCVE•added 2025/05/23 5:11 a.m.•5 views

CVE-2023-32883

In Engineer Mode, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08282249; Issue ID: ALPS08282249...

6.7CVSS7.2AI score0.00021EPSS

Exploits0References1

NVD•added 2024/01/02 3:15 a.m.•17 views

CVE-2023-32883

6.7CVSS6.8AI score0.00021EPSS

Exploits0References1

OSV•added 2024/01/02 3:15 a.m.•0 views

CVE-2023-32883

6.7CVSS5.9AI score

Exploits0References1

Prion•added 2024/01/02 3:15 a.m.•10 views

Out-of-bounds

4CVSS7.3AI score0.00021EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/01/02 2:49 a.m.•3 views

CVE-2023-32883

6.7AI score0.00021EPSS

Exploits0References1

Cvelist•added 2024/01/02 2:49 a.m.•18 views

CVE-2023-32883

7AI score0.00021EPSS

Exploits0References1

CVE•added 2024/01/02 2:49 a.m.•59 views

CVE-2023-32883

CVE-2023-32883 affects MediaTek devices with Engineer Mode where a missing bounds check enables an out-of-bounds write, potentially allowing local escalation of privileges (System) without user interaction. Root cause: improper bounds checking in Engineer Mode. Impact: local privilege escalation ...

6.7CVSS6.7AI score0.00021EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/01/02 12:0 a.m.•1 views

MediaTek Chip Security Breach

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of boundary checking in the Engineer Mode module, which may result in out-of-bounds writes...

6.7CVSS6.8AI score0.00021EPSS

Exploits0References2

Positive Technologies•added 2024/01/01 12:0 a.m.•1 views

PT-2024-12360 · Mediatek +1 · Mt2713 +1

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: In Engineer Mode, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User...

6.7CVSS6.6AI score0.00021EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by