Lucene search
K

163 matches found

NVD
NVD
added 2025/09/04 6:15 p.m.6 views

CVE-2025-26424

In multiple functions of VpnManager.java, there is a possible cross-user data leak due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS0.00092EPSS
Exploits0References2
NVD
NVD
added 2024/11/15 9:15 p.m.39 views

CVE-2017-13309

In readEncryptedData of ConscryptEngine.java, there is a possible plaintext leak due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.2CVSS0.00076EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 9:2 p.m.85 views

CVE-2024-32926

Technical details (affected products/versions/root cause/fix) are not publicly provided in the supplied documents; monitor for updates.

5.5CVSS5.8AI score0.00076EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/04/05 8:15 p.m.10 views

CVE-2024-29747

In dvfsgetlv of dvfs.c, there is a possible out of bounds read due to a missing null check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9CVSS5.9AI score0.00087EPSS
Exploits0References1
NVD
NVD
added 2024/04/01 3:15 a.m.23 views

CVE-2024-20055

In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012...

6.3CVSS5.9AI score0.00079EPSS
Exploits0References1
NVD
NVD
added 2024/04/01 3:15 a.m.19 views

CVE-2024-20041

In da, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541746; Issue ID: ALPS08541746...

4.4CVSS5.8AI score0.0022EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/11 6:55 p.m.12 views

CVE-2024-27230

In ProtocolPsKeepAliveStatusAdapter::getCode of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation...

6.2AI score0.0008EPSS
Exploits0References1
CVE
CVE
added 2024/03/11 6:55 p.m.109 views

CVE-2024-22007

CVE-2024-22007 involves a bound-check omission in the constraint_check path of fvp.c, causing a possible out-of-bounds read and local information disclosure without requiring user interaction. The issue is documented across multiple sources (NVD/Red Hat/PRION/CVE lists) and is associated with Goo...

6.2CVSS6AI score0.00093EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/03/04 2:43 a.m.65 views

CVE-2024-20030

CVE-2024-20030 affects the MediaTek-related component “da” module. The root cause is improper input validation leading to local information disclosure; exploitation requires no user interaction, but local privileges are needed. The entry notes a patch/mitigation identified as Patch ID ALPS0854163...

4.4CVSS6AI score0.00101EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/04 2:43 a.m.28 views

CVE-2024-20020

In OPTEE, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08522504; Issue ID: ALPS08522504...

6.2AI score0.0012EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/16 7:33 p.m.18 views

CVE-2024-0017

In shouldUseNoOpLocation of CameraActivity.java, there is a possible confused deputy due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

6.3AI score0.00105EPSS
Exploits0References2
CVE
CVE
added 2024/02/16 12:8 a.m.6869 views

CVE-2023-40093

CVE-2023-40093 is an information-disclosure vulnerability in Google Android where trimmed content could be included in PDF output due to a logic error. It allows local information disclosure with no user interaction; confidentiality is impacted. Public sources cite this CVE in Android security bu...

5.5CVSS6AI score0.00131EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2024/01/02 3:15 a.m.23 views

Information disclosure

In keyInstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08308612; Issue ID: ALPS08308612...

1.4CVSS6.3AI score0.00089EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/02 2:49 a.m.53 views

CVE-2023-32881

CVE-2023-32881 affects MediaTek battery module. A possible information disclosure stems from an integer overflow, enabling local information disclosure with system-level privileges; no user interaction is required. Patch ALPS08308070 / ALPS08308080 is referenced. No exploit details or in-the-wild...

4.4CVSS4.3AI score0.00087EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/02 2:49 a.m.73 views

CVE-2023-32880

CVE-2023-32880 concerns the battery module with a missing bounds check that can cause local information disclosure (high confidentiality impact) and requires local access and high privileges; no user interaction is needed. A patch is available (Patch ID: ALPS08308070; Issue ID: ALPS08308076). No ...

4.4CVSS4.3AI score0.00087EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/02 2:49 a.m.67 views

CVE-2023-32875

CVE-2023-32875 affects MediaTek platforms via the keyInstall function. The root cause is a missing bounds check in keyInstall, enabling local information disclosure and requiring System privileges for exploitation; no user interaction is needed. The CVE entry cites Patch ID ALPS08308607 and Issue...

4.4CVSS4.3AI score0.00091EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/08 4:15 p.m.19 views

Out-of-bounds

In Init of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

1.7CVSS6.4AI score0.001EPSS
Exploits0References1
CVE
CVE
added 2023/12/08 3:44 p.m.89 views

CVE-2023-48412

CVE-2023-48412 affects the Mali driver’s private_handle_t in mali_gralloc_buffer.h. A logic error can cause an information leak, enabling local information disclosure without additional execution privileges and without user interaction. The impact is restricted to local disclosure; exploitation d...

5.5CVSS5.1AI score0.00105EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/04 3:45 a.m.45 views

CVE-2023-32858

The CVE-2023-32858 entry concerns the GZ module (MediaTek context) with a missing data erasing causing local information disclosure. Root cause is not clearly detailed beyond the data erasure gap; the impact states local information disclosure with System execution privileges required, and exploi...

4.4CVSS4.3AI score0.00107EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/04 3:45 a.m.42 views

CVE-2023-32852

CVE-2023-32852 affects the cameraisp module. The vulnerability is an information disclosure caused by improper input validation, enabling local disclosure with SYSTEM privileges required and no user interaction. The documented attack vector is LOCAL with HIGH privileges required; no exploitation ...

4.4CVSS4.3AI score0.00108EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder