CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

NVD•added 2024/11/19 7:15 p.m.•15 views

CVE-2018-9339

In writeTypedArrayList and readTypedArrayList of Parcel.java, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00035EPSS

Exploits0References1

Cvelist•added 2024/11/19 6:45 p.m.•10 views

CVE-2018-9339

0.00035EPSS

Exploits0References1

NVD•added 2022/12/13 4:15 p.m.•15 views

CVE-2022-20474

In readLazyValue of Parcel.java, there is a possible loading of arbitrary code into the System Settings app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS0.00321EPSS

Exploits1References1

UbuntuCve•added 2022/12/13 4:15 p.m.•31 views

CVE-2022-20474

7.8CVSS7.3AI score0.00321EPSS

Exploits1References2

OSV•added 2022/12/13 4:15 p.m.•0 views

UBUNTU-CVE-2022-20474

7.8CVSS6.2AI score0.00321EPSS

Exploits1References3

Cvelist•added 2022/12/13 12:0 a.m.•17 views

CVE-2022-20474

8AI score0.00321EPSS

Exploits1References1

OSV•added 2022/12/01 12:0 a.m.•26 views

ASB-A-240138294

7.8CVSS7.8AI score0.00321EPSS

Exploits1References3

OSV•added 2022/09/01 12:0 a.m.•19 views

ASB-A-208279300

In recycle of Parcel.java, there is a possible way to start foreground activity from background due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00013EPSS

Exploits0References2

NVD•added 2022/06/15 2:15 p.m.•15 views

CVE-2022-20197

7.8CVSS0.00013EPSS

Exploits0References1

Prion•added 2022/06/15 2:15 p.m.•18 views

Code injection

4.6CVSS7.6AI score0.00013EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/06/15 1:23 p.m.•12 views

CVE-2022-20197

7.9AI score0.00013EPSS

Exploits0References1

CVE•added 2022/06/15 1:23 p.m.•131 views

CVE-2022-20197

CVE-2022-20197 affects the Android Framework (notably in Android 12L) where a Parcel.java recycle bug could allow starting a foreground activity from the background, enabling local elevation of privilege with no user interaction. The issue is categorized as EoP with a moderate to high risk depend...

7.8CVSS7.6AI score0.00013EPSS

Exploits0References1Affected Software1

Prion•added 2018/11/14 6:29 p.m.•14 views

Input validation

In Parcel.writeMapInternal of Parcel.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...

7.2CVSS7.6AI score0.00017EPSS

Exploits0References2Affected Software1

NVD•added 2018/11/14 6:29 p.m.•17 views

CVE-2018-9523

7.8CVSS8.2AI score0.00017EPSS

Exploits0References2

CVE•added 2018/11/14 6:0 p.m.•41 views

CVE-2018-9523

CVE-2018-9523 affects Android 7.0–9 in Parcel.java’s Parcel.writeMapInternal, where a parcel serialization/deserialization mismatch arises from improper input validation. This creates local privilege escalation with no user interaction required; the issue is exploitable locally within affected An...

7.8CVSS8.1AI score0.00017EPSS

Exploits0References2Affected Software1

Cvelist•added 2018/11/14 6:0 p.m.•13 views

CVE-2018-9523

7.8AI score0.00017EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by