Lucene search
K

3142 matches found

OSV
OSV
added 2026/06/01 12:0 a.m.11 views

ASB-A-380091558

In btajvrfcommconnect of btajvact.cc, there is a possible bypass of bonding for a secure connection due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00083EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.13 views

ASB-A-479515555

Bulletin has no description...

5.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.14 views

PT-2026-45581

Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description A logic error in multiple functions within ubsan throwing runtime.cpp can lead to a permanent local denial of service. This issue allows an attacker to cause the system to become unavailable...

5.5CVSS5.9AI score0.00071EPSS
Exploits0References4
OSV
OSV
added 2026/06/01 12:0 a.m.7 views

ASB-A-493235107

In TBD of TBD, there is a possible TBD due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4.6CVSS5.9AI score0.00115EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.9 views

ASB-A-329631990

In multiple locations, there is a possible tapjacking due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00075EPSS
Exploits0References4
OSV
OSV
added 2026/06/01 12:0 a.m.8 views

PUB-A-434105398

In keymint, there is a possible Permission Bypass due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score0.00068EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.17 views

PT-2026-45569

In multiple locations, there is a possible tapjacking due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00075EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.11 views

PUB-A-483382363

In OSMMapPMRGeneric of pmros.c, there is a possible way to leverage a system call to system call to maliciously expand the VMA out of bounds due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

7.8CVSS5.9AI score0.00071EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.11 views

ASB-A-385917501

In onNullBinding of HostEmulationManager.java, there is a possible way to launch an activity from the background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

7.8CVSS5.9AI score0.00071EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.17 views

ASB-A-470967228

In multiple functions of ubsanthrowingruntime.cpp, there is a possible way to cause a permanent denial of service due to a logic error in the code. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00071EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.11 views

ASB-A-483142784

In approvalLevelForDomainInternal of DomainVerificationService.java, there is a possible way to hijack an arbitrary app link due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS6AI score0.00082EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.21 views

PT-2026-45613

In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead to local with null execution privileges needed. User interaction is null for exploitation...

4CVSS5.9AI score0.00074EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.10 views

ASB-A-428945391

In VerifyNoOverlapInSessions of apexd.cpp, there is a possible way to block security updates due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS5.9AI score0.00184EPSS
Exploits4References4
ATTACKERKB
ATTACKERKB
added 2026/05/27 8:52 p.m.16 views

CVE-2026-45137

Anchor is a framework providing several convenient developer tools for writing Solana programs. From 1.0.0 to before 1.0.2, an logic error causes anchor programs to accept any program id when requiring the system program id, causing false assumptions resulting in potential arbitrary cpi in progra...

8.2CVSS5.9AI score0.00246EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 7:34 a.m.8 views

CVE-2026-44055

A logic error involving bitwise OR operations in Netatalk 3.1.4 through 4.4.2 allows a remote authenticated attacker to inject OS commands and execute arbitrary code...

7.5CVSS6.1AI score0.0036EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/17 7:30 a.m.18 views

CVE-2026-8738

Sanluan PublicCMS 5.202506.d contains a vulnerability affecting the Trade payment flow. Specifically, the methods TradeOrderController.pay, TradePaymentController.pay, and AccountGatewayComponent.pay in the publiccms-trade module are affected, with the root cause described as a business logic man...

6.9CVSS6.1AI score0.00331EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/17 12:0 a.m.12 views

PublicCMS 安全漏洞

PublicCMS is an open-source content management system CMS developed in Java by PublicCMS Company in China. Version Sanluan PublicCMS 5.202506.d contains a security vulnerability. This vulnerability stems from a business logic error in the...

6.9CVSS6.7AI score0.00331EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.16 views

PT-2026-41524

A security vulnerability has been detected in Sanluan PublicCMS 5.202506.d. Impacted is the function TradeOrderController.pay/TradePaymentController.pay/AccountGatewayComponent.pay of the file publiccms-trade/src/main/java/com/publiccms/controller/web/trade/TradeOrderController.java of the...

6.9CVSS6.1AI score0.00331EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/07 2:59 a.m.10 views

CVE-2026-41660

Admidio is an open-source user management solution. Prior to version 5.0.9, a logic error in Admidio's two-factor authentication reset inverts the authorization check. Non-admin users cannot remove their own TOTP configuration, but they can remove other users' TOTP, including administrators. A...

7.1CVSS5.7AI score0.00297EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/06 11:21 p.m.9 views

CVE-2026-43252

A flaw was found in the MultiPath TCP MPTCP subsystem of the Linux kernel. A local attacker could exploit a logic error in how MPTCP manages network connection endpoints. By performing a specific sequence of operations, an attacker could trigger a kernel warning, potentially leading to system...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References4
Rows per page
Query Builder