Lucene search
+L

55 matches found

Redos
Redos
added 2026/01/20 12:0 a.m.6 views

ROS-20260120-73-0005

A vulnerability in the inputevent function of the drivers/hid/hid-appleir.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.7AI score0.002EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-7042

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description FreeRDP, a Remote Desktop Protocol implementation, contains a flaw related to the ainput send input event function. This function caches a channel callback in a local variable and subsequently uses ...

9.8CVSS5.4AI score0.0195EPSS
Exploits2References214
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-0292

Malware in sbrugna...

7.5CVSS7.5AI score0.01584EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2006-1981

Malware in sbrugna...

2.1CVSS6.4AI score0.00394EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-385157)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-385157 advisory. In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle Syzkaller reports a NULL pointer...

5.5CVSS6.2AI score0.002EPSS
Exploits0References4
OSV
OSV
added 2025/07/10 9:15 a.m.13 views

AZL-64896 CVE-2025-38335 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...

5.5CVSS6.2AI score0.00114EPSS
Exploits0References1
OSV
OSV
added 2025/07/10 9:15 a.m.4 views

UBUNTU-CVE-2025-38335

In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...

5.5CVSS6AI score0.00114EPSS
Exploits0References36
OSV
OSV
added 2025/06/18 9:28 a.m.7 views

CVE-2025-38016 HID: bpf: abort dispatch if device destroyed

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: abort dispatch if device destroyed The current HID bpf implementation assumes no output report/request will go through it after hidbpfdestroydevice has been called. This leads to a bug that unplugging certain types of H...

5.5CVSS7.2AI score0.00161EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 9:33 a.m.8 views

CVE-2024-0038

In injectInputEventToInputFilter of AccessibilityManagerService.java, there is a possible arbitrary input event injection due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS7.4AI score0.00133EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:50 a.m.4 views

CVE-2023-21171

In verifyInputEvent of InputDispatcher.cpp, there is a possible way to conduct click fraud due to side channel information disclosure. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...

6.7CVSS6.3AI score0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:0 p.m.7 views

CVE-2020-0475

In createInputConsumer of WindowManagerService.java, there is a possible way to block and intercept input events due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

7.8CVSS8.6AI score0.00402EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.13 views

The vulnerability of the input_event() function in the drivers/hid/hid-appleir.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the inputevent function in the drivers/hid/hid-appleir.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.6AI score0.002EPSS
Exploits0References18Affected Software6
OSV
OSV
added 2025/04/01 4:15 p.m.6 views

AZL-59960 CVE-2025-21948 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle Syzkaller reports a NULL pointer dereference issue in inputevent. BUG: KASAN: null-ptr-deref in instrumentatomicread include/linux/instrumented.h:68 inline BUG:...

5.5CVSS5.8AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.5 views

DEBIAN-CVE-2025-21948

In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle Syzkaller reports a NULL pointer dereference issue in inputevent. BUG: KASAN: null-ptr-deref in instrumentatomicread include/linux/instrumented.h:68 inline BUG:...

5.5CVSS5.7AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.6 views

AZL-59946 CVE-2025-21948 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle Syzkaller reports a NULL pointer dereference issue in inputevent. BUG: KASAN: null-ptr-deref in instrumentatomicread include/linux/instrumented.h:68 inline BUG:...

5.5CVSS6.3AI score0.002EPSS
Exploits0References1
NVD
NVD
added 2024/02/16 2:15 a.m.24 views

CVE-2024-0038

In injectInputEventToInputFilter of AccessibilityManagerService.java, there is a possible arbitrary input event injection due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS7.1AI score0.00133EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/16 12:8 a.m.12 views

CVE-2024-0038

In injectInputEventToInputFilter of AccessibilityManagerService.java, there is a possible arbitrary input event injection due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.5AI score0.00133EPSS
Exploits0References2
CVE
CVE
added 2024/02/16 12:8 a.m.4540 views

CVE-2024-0038

Summary of CVE-2024-0038: The issue lies in Android’s AccessibilityManagerService.java within the function injectInputEventToInputFilter, where a missing permission check enables arbitrary input event injection. This can lead to local escalation of privilege without additional execution privilege...

8.4CVSS7.3AI score0.00133EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/02/16 12:8 a.m.38 views

CVE-2024-0038

In injectInputEventToInputFilter of AccessibilityManagerService.java, there is a possible arbitrary input event injection due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.4AI score0.00133EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/16 12:0 a.m.7 views

Google Android Security Vulnerability

Google Android is a Linux-based open source operating system from Google Inc. in the United States. A security vulnerability exists in Google Android, which stems from a lack of permission checking in the injectInputEventToInputFilter method of the AccessibilityManagerService.java file, which cou...

8.4CVSS6.8AI score0.00133EPSS
Exploits0References4
Rows per page
Query Builder