CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

696 matches found

Prion•added 2020/10/14 2:15 p.m.•20 views

Input validation

In binderreleasework of binder.c, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.2CVSS7.4AI score0.00507EPSS

Exploits2References2Affected Software1

CVE•added 2020/10/14 1:7 p.m.•299 views

CVE-2020-0423

CVE-2020-0423 is a use-after-free in the Android/Linux binder driver (binder_release_work in binder.c) caused by improper locking. It enables local privilege escalation with no extra user interaction required. The description appears consistently across multiple connected sources (e.g., Astra Lin...

7.8CVSS7.4AI score0.00507EPSS

Exploits2References2Affected Software1

Debian CVE•added 2020/10/14 1:7 p.m.•39 views

CVE-2020-0423

7.8CVSS5.2AI score0.00507EPSS

Exploits2

CNVD•added 2020/09/18 12:0 a.m.•1 views

Google Android Media extractor cross-site scripting vulnerability

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A cross-site scripting vulnerability exists in the Android-11 version of Media extractor. The vulnerability stems from improper locking and can be exploited by an attacker to cause remote code...

8.8CVSS7.4AI score0.00559EPSS

Exploits0References1

OSV•added 2020/09/17 9:15 p.m.•2 views

CVE-2020-0357

In SurfaceFlinger, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the graphics server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

7.8CVSS7.2AI score

Exploits0References1

OSV•added 2020/09/17 9:15 p.m.•2 views

CVE-2020-0303

In the Media extractor, there is a possible use after free due to improper locking. This could lead to remote code execution in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-1482232...

8.8CVSS7.8AI score0.00559EPSS

Exploits0References1

Cvelist•added 2020/09/17 8:51 p.m.•12 views

CVE-2020-0303

9.2AI score0.00559EPSS

Exploits0References1

CVE•added 2020/09/17 8:51 p.m.•48 views

CVE-2020-0303

CVE-2020-0303 affects the Android 11 Media extractor, where a use-after-free caused by improper locking can lead to remote code execution. The issue concerns the media-extractor component (Android-11) and is described as enabling remote code execution with no or minimal privileges; exploitation r...

8.8CVSS9AI score0.00559EPSS

Exploits0References1Affected Software1

OSV•added 2020/09/17 7:15 p.m.•3 views

CVE-2020-0433

In blkmqqueuetagbusyiter of blk-mq-tag.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

7.8CVSS8.1AI score

Exploits0References2

NVD•added 2020/09/17 7:15 p.m.•10 views

CVE-2020-0433

7.8CVSS0.00151EPSS

Exploits0References1

ATTACKERKB•added 2020/09/17 7:15 p.m.•3 views

CVE-2020-0433

7.8CVSS5.6AI score0.00151EPSS

Exploits0References2

UbuntuCve•added 2020/09/17 7:15 p.m.•25 views

CVE-2020-0433

7.8CVSS7AI score0.00151EPSS

Exploits0References4

Prion•added 2020/09/17 7:15 p.m.•17 views

Design/Logic Flaw

4.6CVSS7.7AI score0.00151EPSS

Exploits0References1

OSV•added 2020/09/17 7:15 p.m.•0 views

UBUNTU-CVE-2020-0433

7.8CVSS6.8AI score0.00151EPSS

Exploits0References5

Debian CVE•added 2020/09/17 6:45 p.m.•20 views

CVE-2020-0433

7.8CVSS6.2AI score0.00151EPSS

Exploits0

CVE•added 2020/09/17 6:45 p.m.•89 views

CVE-2020-0433

CVE-2020-0433 affects the Android/Linux kernel: use-after-free in blk_mq_queue_tag_busy_iter (blk-mq-tag.c) caused by improper locking, enabling local privilege escalation with no user interaction. Public details in the Initial document describe the flaw; connected Nessus advisories (Unity Linux/...

7.8CVSS8AI score0.00151EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/09/17 6:45 p.m.•19 views

CVE-2020-0433

8.4AI score0.00151EPSS

Exploits0References1

NVD•added 2020/08/11 8:15 p.m.•17 views

CVE-2020-0243

In clearPropValue of MediaAnalyticsItem.cpp, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege in the media server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8CVSS7.8AI score0.00153EPSS

Exploits0References1

Prion•added 2020/08/11 8:15 p.m.•11 views

Design/Logic Flaw

7.2CVSS8.1AI score0.00153EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2020/03/23 12:0 a.m.•7 views

PT-2020-1247 · Linux +7 · Linux Kernel +7

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.6.8 Description: The issue is related to the usb sg cancel function in the Linux kernel, specifically in the drivers/usb/core/message.c file. It involves a use-after-free condition due to a transfer occurring...

10CVSS7.9AI score0.78684EPSS

Exploits173References1550

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by