180 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000720)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000720 advisory. The assocarrayinsertintoterminalnode function in lib/assocarray.c in the Linux kernel before 4.5.3 does not check whether a slot is a leaf, which allows local users ...
EUVD-2021-26117
Malware in sbrugna...
CVE-2025-26424
In multiple functions of VpnManager.java, there is a possible cross-user data leak due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2017-13309
In readEncryptedData of ConscryptEngine.java, there is a possible plaintext leak due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-32926
Technical details (affected products/versions/root cause/fix) are not publicly provided in the supplied documents; monitor for updates.
CVE-2024-29747
In dvfsgetlv of dvfs.c, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
PT-2024-22990 · Google · Android
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a missing bounds check in the km exp did inner function of kmv.c, which could lead to a possible out of bounds read. This might...
CVE-2024-20055
In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012...
CVE-2024-20041
In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541746; Issue ID: ALPS08541746...
CVE-2024-20055
In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012...
CVE-2024-27230
In ProtocolPsKeepAliveStatusAdapter::getCode of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation...
CVE-2024-22007
CVE-2024-22007 involves a bound-check omission in the constraint_check path of fvp.c, causing a possible out-of-bounds read and local information disclosure without requiring user interaction. The issue is documented across multiple sources (NVD/Red Hat/PRION/CVE lists) and is associated with Goo...
CVE-2024-20030
CVE-2024-20030 affects the MediaTek-related component “da” module. The root cause is improper input validation leading to local information disclosure; exploitation requires no user interaction, but local privileges are needed. The entry notes a patch/mitigation identified as Patch ID ALPS0854163...
CVE-2024-20020
In OPTEE, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08522504; Issue ID: ALPS08522504...
CVE-2024-0017
In shouldUseNoOpLocation of CameraActivity.java, there is a possible confused deputy due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2023-40093
CVE-2023-40093 is an information-disclosure vulnerability in Google Android where trimmed content could be included in PDF output due to a logic error. It allows local information disclosure with no user interaction; confidentiality is impacted. Public sources cite this CVE in Android security bu...
Information disclosure
In keyInstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308612; Issue ID: ALPS08308612...
CVE-2023-32881
CVE-2023-32881 affects MediaTek battery module. A possible information disclosure stems from an integer overflow, enabling local information disclosure with system-level privileges; no user interaction is required. Patch ALPS08308070 / ALPS08308080 is referenced. No exploit details or in-the-wild...
CVE-2023-32880
CVE-2023-32880 concerns the battery module with a missing bounds check that can cause local information disclosure (high confidentiality impact) and requires local access and high privileges; no user interaction is needed. A patch is available (Patch ID: ALPS08308070; Issue ID: ALPS08308076). No ...
CVE-2023-32880
In battery, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308070; Issue ID: ALPS08308076...