6 matches found
EUVD-2022-45557
Malicious code in bioql PyPI...
CVE-2022-42488
OpenHarmony-v3.1.2 and prior versions have a Missing permission validation vulnerability in param service of startup subsystem. An malicious application installed on the device could elevate its privileges to the root user, disable security features, or cause DoS by disabling particular services...
Input validation
OpenHarmony-v3.1.2 and prior versions have a Missing permission validation vulnerability in param service of startup subsystem. An malicious application installed on the device could elevate its privileges to the root user, disable security features, or cause DoS by disabling particular services...
CVE-2022-42488
OpenHarmony CVE-2022-42488 affects OpenHarmony versions 3.1.2 and earlier. The root cause is missing permission validation in the param service of the startup subsystem, which could let a malicious app elevate privileges to root, disable security features, or cause denial of service by stopping s...
Design/Logic Flaw
The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and unapproved settings change...
CVE-2021-42539
The CVE-2021-42539 issue affects Emerson WirelessHART Gateway devices (WirelessHART 1410, 1410D, 1420 gateways) with firmware versions prior to 4.7.94. The root cause is missing authentication/permission validation during system backup restore, enabling a low-privileged attacker to perform action...