Lucene search
K

204 matches found

OSV
OSV
added 2023/01/17 5:43 p.m.6 views

GSD-2023-1000488 media: s5p-mfc: Clear workbit to handle error condition

media: s5p-mfc: Clear workbit to handle error condition This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.5 views

PT-2023-34016 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue is related to the s5p-mfc media component in the Linux Kernel, where a clear workbit is not handled properly in an error condition. The actual impact and potential for attack have...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.3 views

PT-2023-33565 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: The issue is related to the s5p-mfc media component in the Linux Kernel, where a clear workbit is not handled properly in an error condition. The actual impact and potential for attack have...

7.2AI score
Exploits0References1
Prion
Prion
added 2022/12/16 4:15 p.m.17 views

Integer overflow

In secmediaprotect of media.c, there is a possible EoP due to an integer overflow. This could lead to local escalation of privilege of secure mode MFC Core with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

4.3CVSS7.6AI score0.00174EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/12/16 12:0 a.m.23 views

CVE-2022-20598

In secmediaprotect of media.c, there is a possible EoP due to an integer overflow. This could lead to local escalation of privilege of secure mode MFC Core with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

7.9AI score0.00174EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2022/07/06 4:47 a.m.16 views

mfc-sha.de Cross Site Scripting vulnerability OBB-2730995

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
NVD
NVD
added 2021/10/06 6:15 p.m.18 views

CVE-2021-25491

A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference...

4.4CVSS0.00101EPSS
Exploits0References1
Prion
Prion
added 2021/10/06 6:15 p.m.18 views

Null pointer dereference

A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference...

2.1CVSS5AI score0.00101EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/10/06 5:10 p.m.42 views

CVE-2021-25491

CVE-2021-25491 affects the Samsung mfc driver. The root cause is a NULL-pointer dereference that can cause memory corruption in versions prior to Samsung SMR Oct-2021 Release 1. Public data indicates impact on memory handling, with CVSS details showing low to medium base severity depending on met...

4.4CVSS4.9AI score0.00101EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/10/06 5:10 p.m.22 views

CVE-2021-25491

A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference...

2.3CVSS5.2AI score0.00101EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/15 12:0 a.m.13 views

Unauthorized access vulnerability in Brother Industries MFC-L2710DW series

The MFC-L2710DW series is a multifunction printer. An unauthorized access vulnerability exists in Brother Industries MFC-L2710DW series, which can be exploited by attackers to obtain sensitive information...

6.8AI score
Exploits0
OSV
OSV
added 2021/06/11 3:15 p.m.3 views

CVE-2021-25395

A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...

6.4CVSS5.8AI score0.00366EPSS
Exploits0References2
NVD
NVD
added 2021/06/11 3:15 p.m.27 views

CVE-2021-25395

A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...

6.4CVSS0.00366EPSS
Exploits0References2
NVD
NVD
added 2021/06/11 3:15 p.m.21 views

CVE-2021-25394

A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised...

6.4CVSS0.00417EPSS
Exploits0References2
Prion
Prion
added 2021/06/11 3:15 p.m.17 views

Race condition

A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised...

4.4CVSS6.6AI score0.00417EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/06/11 3:15 p.m.18 views

Race condition

A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...

4.4CVSS6.3AI score0.00366EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/11 2:45 p.m.34 views

CVE-2021-25394

A use after free vulnerability via race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows arbitrary write given a radio privilege is compromised...

6.4CVSS6.7AI score0.00417EPSS
Exploits0References1
CVE
CVE
added 2021/06/11 2:45 p.m.429 views

CVE-2021-25394

CVE-2021-25394 is a race-condition-based use-after-free vulnerability in Samsung Mobile Devices’ MFC charger driver, prior to SMR MAY-2021 Release 1. The issue enables arbitrary writes after a radio privilege is compromised, with local attack vector and partial integrity/availability impact per C...

6.4CVSS6.8AI score0.00417EPSS
In wildExploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/11 2:45 p.m.29 views

CVE-2021-25395

A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...

6.4CVSS6.5AI score0.00366EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/06/11 2:45 p.m.10 views

CVE-2021-25395

A race condition in MFC charger driver prior to SMR MAY-2021 Release 1 allows local attackers to bypass signature check given a radio privilege is compromised...

6.4CVSS6.3AI score0.00366EPSS
Exploits0References1
Rows per page
Query Builder