Lucene search
+L

55 matches found

Cvelist
Cvelist
added 2022/04/11 7:38 p.m.26 views

CVE-2022-20076

In ged, there is a possible memory corruption due to an incorrect error handling. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05838808; Issue ID: ALPS05839556...

4.8AI score0.00111EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2021/10/12 11:37 a.m.23 views

ged-project.de Improper Access Control vulnerability OBB-2162571

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

0.1AI score
Exploits0
OSV
OSV
added 2021/08/18 3:15 p.m.4 views

CVE-2021-0626

In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05687510; Issue ID: ALPS05687510...

6.7CVSS5.9AI score0.00119EPSS
Exploits0References1
Prion
Prion
added 2021/08/18 3:15 p.m.20 views

Out-of-bounds

In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05687510; Issue ID: ALPS05687510...

4.6CVSS6.7AI score0.00119EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/08/18 2:44 p.m.47 views

CVE-2021-0626

CVE-2021-0626 describes a possible out-of-bounds write in ged due to a missing bounds check, potentially enabling local escalation of privilege to System level without user interaction. Multiple connected sources (NVD, Red Hat, CVE lists) confirm the same issue and reference Patch ID ALPS05687510...

6.7CVSS6.7AI score0.00119EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/08/18 2:44 p.m.27 views

CVE-2021-0626

In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05687510; Issue ID: ALPS05687510...

7AI score0.00119EPSS
Exploits0References1
NVD
NVD
added 2021/02/04 7:15 p.m.23 views

CVE-2021-0350

In ged, there is a possible system crash due to an improper input validation. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11; Patch ID:...

4.9CVSS0.00147EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/02/04 5:10 p.m.27 views

CVE-2021-0350

In ged, there is a possible system crash due to an improper input validation. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11; Patch ID:...

5AI score0.00147EPSS
Exploits0References1
OSV
OSV
added 2021/02/03 12:15 a.m.6 views

CVE-2021-0354

In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11; Patch...

6.7CVSS6.8AI score0.00155EPSS
Exploits0References1
CVE
CVE
added 2021/02/02 11:1 p.m.52 views

CVE-2021-0354

CVE-2021-0354: A local privilege-escalation flaw in ged on Android (Android 8.1–11) arises from an out-of-bounds write caused by an integer overflow. The issue allows an attacker with local access to potentially execute with System privileges without user interaction. Affected components are tied...

6.7CVSS6.7AI score0.00155EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.7 views

Google Android Input Validation Error Vulnerability

Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android 11 suffers from an input validation error vulnerability that stems from an integer overflow in ged, where a write overrun is possible. This could result in a local escalatio...

6.7CVSS6.8AI score0.00155EPSS
Exploits0References2
CVE
CVE
added 2021/01/11 9:48 p.m.128 views

CVE-2021-0301

CVE-2021-0301 affects the Android ged component. The root cause is a missing bounds check that allows an out-of-bounds write, leading to local escalation of privilege with System-level execution privileges required. Exploitation does not require user interaction. Multiple connected sources (NVD, ...

6.7CVSS6.7AI score0.00158EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2015/02/19 3:59 p.m.16 views

CVE-2015-1587

Unrestricted file upload vulnerability in filetoindex.php in Maarch LetterBox 2.8 and earlier and GEC/GED 1.4 and earlier allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a request to a predictable filename in tmp/...

7.5CVSS7.6AI score0.44188EPSS
Exploits4References4
CVE
CVE
added 2015/02/19 3:0 p.m.54 views

CVE-2015-1587

CVE-2015-1587 is an unrestricted file upload vulnerability in Maarch LetterBox (and GEC/GED), allowing remote attackers to execute arbitrary PHP by uploading a PHP file via file_to_index.php and then requesting it from a predictable file path in tmp/. It affects Maarch LetterBox 2.8 and earlier, ...

7.5CVSS7.9AI score0.44188EPSS
Exploits4References4Affected Software2
Cvelist
Cvelist
added 2015/02/19 3:0 p.m.24 views

CVE-2015-1587

Unrestricted file upload vulnerability in filetoindex.php in Maarch LetterBox 2.8 and earlier and GEC/GED 1.4 and earlier allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a request to a predictable filename in tmp/...

7.6AI score0.44188EPSS
Exploits4References4
Rows per page
Query Builder