CVE-2023-33118

CVE-2023-33118 concerns memory corruption when processing the Listen Sound Model client payload buffer during a Listen Sound session get parameter request in ST HAL. Documented impact includes high confidentiality, integrity, and availability loss with a local attack vector and no user interactio...

CVE-2023-22674

Missing Authorization, Cross-Site Request Forgery CSRF vulnerability in Hal Gatewood Dashicons + Custom Post Types.This issue affects Dashicons + Custom Post Types: from n/a through 1.0.2...

CVE-2023-22674

Missing Authorization, Cross-Site Request Forgery CSRF vulnerability in Hal Gatewood Dashicons + Custom Post Types.This issue affects Dashicons + Custom Post Types: from n/a through 1.0.2...

Cross site request forgery (csrf)

Missing Authorization, Cross-Site Request Forgery CSRF vulnerability in Hal Gatewood Dashicons + Custom Post Types.This issue affects Dashicons + Custom Post Types: from n/a through 1.0.2...

CVE-2023-22674

The CVE-2023-22674 entry concerns the WordPress Dashicons + Custom Post Types plugin (v1.0.2 and earlier). The issue is a Missing Authorization and Cross-Site Request Forgery (CSRF) vulnerability, categorized as Broken Access Control. Affected component: Dashicons + Custom Post Types plugin; vuln...

CVE-2023-22674 WordPress Dashicons + Custom Post Types Plugin <= 1.0.2 is vulnerable to Broken Access Control

Missing Authorization, Cross-Site Request Forgery CSRF vulnerability in Hal Gatewood Dashicons + Custom Post Types.This issue affects Dashicons + Custom Post Types: from n/a through 1.0.2...

CVE-2023-42558

Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution...

CVE-2023-42558

Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution...

Cross site scripting

Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution...

CVE-2023-42558

Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution...

CVE-2023-42558

Out of bounds write vulnerability in HDCP in HAL prior to SMR Dec-2023 Release 1 allows attacker to perform code execution...

CVE-2023-42558

CVE-2023-42558 is a Samsung vulnerability describing an out-of-bounds write in the HDCP component within HAL prior to Samsung SMR December 2023 Release 1, allowing attacker code execution. The connected sources consistently identify the affected area as HAL/HDCP and note that remediation is provi...

Information Disclosure

org.wildfly.core: wildfly-controller is vulnerable to Information Disclosure. The vulnerability is caused by a missing authorization check in the resolve-expression HAL interface while reading a system property or environment variables. This can lead to a malicious user accessing the Wildfly syst...

wildfly-core Exposure of Sensitive Information to an Unauthorized Actor vulnerability

A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system...

CVE-2023-4061

A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system...

Design/Logic Flaw

A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system...

PT-2023-27539 · Unknown · Wildfly-Core

Name of the Vulnerable Software and Affected Versions: Wildfly-core affected versions not specified Description: A flaw in wildfly-core allows a management user to use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This could enable a...

CVE-2023-28569

Information disclosure in WLAN HAL while handling command through WMI interfaces...

CVE-2023-28568

Information disclosure in WLAN HAL when reception status handler is called...

Command injection

Information disclosure in WLAN HAL while handling the WMI state info command...