453 matches found
CVE-2023-30681
An improper input validation vulnerability within initialize function in HAL VaultKeeper prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write...
CVE-2023-30681
CVE-2023-30681 affects HAL VaultKeeper, specifically the initialize function. Connected sources confirm the vulnerability is an improper input validation that can lead to an out-of-bounds write in VaultKeeper prior to SMR Aug-2023 Release 1. Impact per NVD indicates HIGH severity (CVSSv3.1: AV:L/...
PT-2023-22879 · Unknown · Hal Vaultkeeper
Name of the Vulnerable Software and Affected Versions: HAL VaultKeeper versions prior to SMR Aug-2023 Release 1 Description: The issue is related to an improper input validation vulnerability within the initialize function. This vulnerability allows an attacker to cause an out-of-bounds write...
MSPM0L1306-HAL (>=0.1.0 <=0.1.6), a4 (>=0.0.1 <=0.0.4) +863 more potentially affected by unknown CVE via atomic-polyfill (=1.0.3)
atomic-polyfill CARGO version =1.0.3 is affected by a known vulnerability. The following packages have a transitive dependency on atomic-polyfill and may be impacted: - MSPM0L1306-HAL =0.1.0, =0.0.1, =0.0.3, =0.23.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.4.1, =0.5.2 and more...
CVE-2023-30653
Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30650
Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30652
Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
Cross site scripting
Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
Cross site scripting
Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
Cross site scripting
Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
Cross site scripting
Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30653
Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30653
Out of bounds read and write in enableTspDevice of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30653
The CVE-2023-30653 issue affects the sysinput HAL service, caused by an out-of-bounds read/write in the enableTspDevice function. Prior to SMR Jul-2023 Release 1, this vulnerability allows local attackers to execute arbitrary code. Affected software/versions are sysinput HAL service versions befo...
CVE-2023-30652
Out of bounds read and write in callrunTspCmdNoRead of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30652
CVE-2023-30652 affects Samsung mobile devices’ sysinput HAL service (pre-SMR Jul-2023 Release 1). It is an out-of-bounds read/write vulnerability in callrunTspCmdNoRead that enables local attackers to execute arbitrary code. Impact is supported by NVD/Red Hat/NCSC advisories; CVSS v3.1 vectors in...
CVE-2023-30651
Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30651
Out of bounds read and write in callgetTspsysfs of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...
CVE-2023-30651
CVE-2023-30651 affects Samsung Mobile devices, due to an out-of-bounds read/write in the sysinput HAL service (callgetTspsysfs). The root cause is a buffer overrun in the HAL that handles system input; this enables local attackers to execute arbitrary code with high impact (confidentiality, integ...
CVE-2023-30650
Out of bounds read and write in callrunTspCmd of sysinput HAL service prior to SMR Jul-2023 Release 1 allows local attackers to execute arbitrary code...