Lucene search
K

462 matches found

NVD
NVD
added 2024/02/16 8:15 p.m.14 views

CVE-2024-0019

In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is need...

6.2CVSS6.4AI score0.00102EPSS
Exploits0References2
OSV
OSV
added 2024/02/16 8:15 p.m.4 views

CVE-2024-0019

In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is need...

5CVSS5.9AI score0.00102EPSS
Exploits0References2
Prion
Prion
added 2024/02/16 8:15 p.m.14 views

Design/Logic Flaw

In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is need...

7.1AI score0.00102EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/16 7:33 p.m.23 views

CVE-2024-0019

In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is need...

6.6AI score0.00102EPSS
Exploits0References2
CVE
CVE
added 2024/02/16 7:33 p.m.6972 views

CVE-2024-0019

The CVE-2024-0019 issue affects Android’s AppOpsControllerImpl.setListening in the Framework. A missing check for active recordings can allow hiding the microphone privacy indicator when SystemUI restarts, enabling local denial of service without extra privileges. Impact is limited to DoS on the ...

6.2CVSS6.5AI score0.00102EPSS
Exploits0References2Affected Software1
Oracle linux
Oracle linux
added 2024/02/13 12:0 a.m.366 views

nss security update

3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...

4.3CVSS6.9AI score0.00714EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/02/13 12:0 a.m.94 views

nss security update

3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...

4.3CVSS7.3AI score0.00714EPSS
Exploits0
OSV
OSV
added 2024/02/01 12:0 a.m.27 views

ASB-A-300741186

In removePersistentDot of SystemStatusAnimationSchedulerImpl.kt, there is a possible race condition due to a logic error in the code. This could lead to local escalation of privilege that fails to remove the persistent dot with no additional execution privileges needed. User interaction is not...

8.4CVSS7AI score0.00099EPSS
Exploits0References2
Circl
Circl
added 2024/01/10 10:32 p.m.6 views

CVE-2023-51126

creationtimestamp| type| source ---|---|--- 2024-01-10 22:32:14+00:00| seen| https://t.me/ctinow/166157 2024-01-28 19:31:45+00:00| seen| https://t.me/ctinow/175005...

9.8CVSS7.3AI score0.31097EPSS
Exploits1References2
OSV
OSV
added 2024/01/01 12:0 a.m.35 views

ASB-A-294104969

In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is need...

6.2CVSS5AI score0.00102EPSS
Exploits0References2
Circl
Circl
added 2023/12/22 11:22 a.m.5 views

CVE-2023-49356

creationtimestamp| type| source ---|---|--- 2023-12-22 11:22:14+00:00| seen| https://t.me/ctinow/158317 2023-12-29 21:17:22+00:00| seen| https://t.me/ctinow/160689...

7.5CVSS7.3AI score0.00687EPSS
Exploits1References2
Circl
Circl
added 2023/12/21 7:36 p.m.6 views

GHSA-6QM2-WPXQ-7QH2

creationtimestamp| type| source ---|---|--- 2023-12-21 19:36:55+00:00| seen| https://t.me/ctinow/157912...

4.8AI score
Exploits0References1
Circl
Circl
added 2023/11/07 12:25 a.m.5 views

CVE-2023-4858

creationtimestamp| type| source ---|---|--- 2023-11-07 00:25:57+00:00| seen| https://t.me/cibsecurity/73642...

4.8CVSS6.5AI score0.00405EPSS
Exploits2References1
NVD
NVD
added 2023/10/25 7:15 p.m.12 views

CVE-2023-41975

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. A website may be able to access the microphone without the microphone use indicator being shown...

4.3CVSS5AI score0.00985EPSS
Exploits0References9
OSV
OSV
added 2023/10/25 7:15 p.m.2 views

CVE-2023-41975

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. A website may be able to access the microphone without the microphone use indicator being shown...

4.3CVSS5.7AI score0.00985EPSS
Exploits0References9
CNNVD
CNNVD
added 2023/10/25 12:0 a.m.3 views

Apple macOS Security Breach

Apple macOS is a suite of specialized operating systems developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Sonoma version 14.1, which originates from a website that may be able to access the microphone without displaying a microphone usage indicator...

4.3CVSS6.4AI score0.00985EPSS
Exploits0References12
Circl
Circl
added 2023/10/20 11:58 p.m.7 views

CVE-2023-46117

creationtimestamp| type| source ---|---|--- 2023-10-20 23:58:02+00:00| seen| https://t.me/cibsecurity/72711...

9.6CVSS8.7AI score0.00822EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.75 views

Cisco IOS XE CVE-2023-20198 Implant Indicator of Compromise

Binary data ciscoiosxeimplantCVE-2023-20198.nbin...

10CVSS8.7AI score0.99571EPSS
Exploits26References4
NVD
NVD
added 2023/10/13 12:15 a.m.19 views

CVE-2023-44184

An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the management daemon mgd process of Juniper Networks Junos OS and Junos OS Evolved allows a network-based authenticated low-privileged attacker, by executing a specific command via NETCONF, to cause a CPU...

6.5CVSS6.5AI score0.00502EPSS
Exploits0References1
NVD
NVD
added 2023/10/13 12:15 a.m.14 views

CVE-2023-44183

An Improper Input Validation vulnerability in the VxLAN packet forwarding engine PFE of Juniper Networks Junos OS on QFX5000 Series, EX4600 Series devices allows an unauthenticated, adjacent attacker, sending two or more genuine packets in the same VxLAN topology to possibly cause a DMA memory le...

6.5CVSS6.8AI score0.00322EPSS
Exploits0References3
Rows per page
Query Builder