Lucene search
K

462 matches found

Prion
Prion
added 2023/10/13 12:15 a.m.22 views

Design/Logic Flaw

An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the management daemon mgd process of Juniper Networks Junos OS and Junos OS Evolved allows a network-based authenticated low-privileged attacker, by executing a specific command via NETCONF, to cause a CPU...

4CVSS6.5AI score0.00502EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/10/12 11:2 p.m.21 views

CVE-2023-44184 Junos OS and Junos OS Evolved: High CPU load due to specific NETCONF command

An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the management daemon mgd process of Juniper Networks Junos OS and Junos OS Evolved allows a network-based authenticated low-privileged attacker, by executing a specific command via NETCONF, to cause a CPU...

6.5CVSS6.7AI score0.00502EPSS
Exploits0References1
Circl
Circl
added 2023/09/19 8:21 a.m.4 views

CVE-2023-36319

creationtimestamp| type| source ---|---|--- 2023-09-19 08:21:08+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5161 2023-09-20 07:30:08+00:00| seen| https://t.me/cibsecurity/70765...

8.8CVSS8.1AI score0.01653EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/08/21 2:32 a.m.2 views

Malicious code in usaa-progress-indicator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6bda554520601e00fc54bc5db28faf1d16fd41ea1d00cc51dc62e9a8b7e4eb1c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2023/08/21 2:32 a.m.9 views

MAL-2023-1530 Malicious code in usaa-progress-indicator (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6bda554520601e00fc54bc5db28faf1d16fd41ea1d00cc51dc62e9a8b7e4eb1c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
NVD
NVD
added 2023/08/14 10:15 p.m.15 views

CVE-2023-21278

In multiple locations, there is a possible way to obscure the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS4.2AI score0.00084EPSS
Exploits0References2
OSV
OSV
added 2023/08/14 10:15 p.m.4 views

CVE-2023-21278

In multiple locations, there is a possible way to obscure the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score0.00084EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/14 9:3 p.m.11 views

CVE-2023-21278

In multiple locations, there is a possible way to obscure the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.1AI score0.00084EPSS
Exploits0References2
CVE
CVE
added 2023/08/14 9:3 p.m.138 views

CVE-2023-21278

CVE-2023-21278 affects Google Android, appearing in the Android 2023-08-01/08-01 bulletin under the Framework/EoP category. The issue is a logic error in multiple locations that can obscure the microphone privacy indicator, enabling local elevation of privilege without additional execution privil...

3.3CVSS4.3AI score0.00084EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/08/14 12:0 a.m.4 views

Google Android Security Vulnerability

Google Android is a Linux-based open source operating system from the American company Google. Google Android suffers from a security vulnerability that stems from the existence of logic errors in the code at multiple locations, with a possible way to mask the microphone privacy indicator...

3.3CVSS6.9AI score0.00084EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.4 views

PT-2023-18057 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a logic error in the code that allows the microphone privacy indicator to be obscured in multiple locations. This could lead to...

3.3CVSS4.1AI score0.00084EPSS
Exploits0References5
OSV
OSV
added 2023/08/01 12:0 a.m.25 views

ASB-A-281807669

In multiple locations, there is a possible way to obscure the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS4AI score0.00084EPSS
Exploits0References2
OSV
OSV
added 2023/07/13 12:15 a.m.3 views

CVE-2023-21262

In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying the microphone privacy indicator due to a race condition. This could lead to false user expectations. User interaction is needed for exploitation...

3.1CVSS5.8AI score0.00131EPSS
Exploits0References2
OSV
OSV
added 2023/07/13 12:15 a.m.3 views

CVE-2023-20942

In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.9AI score0.0007EPSS
Exploits0References4
NVD
NVD
added 2023/07/13 12:15 a.m.25 views

CVE-2023-20942

In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS0.0007EPSS
Exploits0References4
Prion
Prion
added 2023/07/13 12:15 a.m.15 views

Race condition

In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying the microphone privacy indicator due to a race condition. This could lead to false user expectations. User interaction is needed for exploitation...

2.6CVSS4.1AI score0.00131EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/12 11:34 p.m.13 views

CVE-2023-21262

In startInput of AudioPolicyInterfaceImpl.cpp, there is a possible way of erroneously displaying the microphone privacy indicator due to a race condition. This could lead to false user expectations. User interaction is needed for exploitation...

6.8AI score0.00131EPSS
Exploits0References2
CVE
CVE
added 2023/07/12 11:34 p.m.135 views

CVE-2023-21262

Consolidated evidence across CVE-2023-21262 entries shows a race condition in the startInput function of AudioPolicyInterfaceImpl.cpp that can cause the microphone privacy indicator to be displayed incorrectly. This could mislead users about mic activity and state. Exploitation, if any, is noted ...

3.1CVSS4AI score0.00131EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/12 11:18 p.m.19 views

CVE-2023-20942

In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying the microphone privacy indicator due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

6AI score0.0007EPSS
Exploits0References4
CVE
CVE
added 2023/07/12 11:18 p.m.188 views

CVE-2023-20942

The CVE-2023-20942 issue affects Android’s AudioFlinger.cpp, specifically in openMmapStream, where a logic error can allow recording audio without showing the microphone privacy indicator. This vulnerability enables local privilege escalation with no extra execution privileges and requires no use...

5.5CVSS5.7AI score0.0007EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder