CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The issue was addressed with improved validation of environment variables. This issue is fixed in macOS Sequoia 15.2. An app may be able to edit NVRAM variables...

5.5AI score0.00089EPSS

Exploits0References1

OSV•added 2023/08/07 4:15 a.m.•0 views

CVE-2023-20790

In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07740194; Issue ID: ALPS07740194...

4.4CVSS5.9AI score0.00018EPSS

Exploits0References1

Prion•added 2018/10/17 2:29 a.m.•20 views

Command injection

Devices in the Linksys ESeries line of routers Linksys E1200 Firmware Version 2.0.09 and Linksys E2500 Firmware Version 3.0.04 are susceptible to OS command injection vulnerabilities due to improper filtering of data passed to and retrieved from NVRAM. Data entered into the 'Router Name' input...

9CVSS7.3AI score0.6344EPSS

Exploits1References1Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by