Lucene search
K

56 matches found

NVD
NVD
added 2025/12/08 5:16 p.m.7 views

CVE-2025-48626

In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS0.00343EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/08 4:57 p.m.2 views

CVE-2025-48626

In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7AI score0.00343EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/08 4:57 p.m.19 views

CVE-2025-48626

In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00343EPSS
Exploits0References3
CVE
CVE
added 2025/12/08 4:57 p.m.49 views

CVE-2025-48626

CVE-2025-48626 pertains to Google Android where a precondition check failure can allow launching an application from the background, enabling remote escalation of privilege without user interaction. Documented across multiple feeds (NVD, Red Hat advisory, CNVD, EUVD, OSV, CVE list, and regional b...

9.8CVSS7AI score0.00343EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/12/01 12:0 a.m.7 views

ASB-A-381339822

In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS7.3AI score0.00343EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/23 12:0 a.m.8 views

PT-2025-43500

In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.4AI score0.00343EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-25848

Malicious code in bioql PyPI...

6.7CVSS6.6AI score0.00124EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-28917

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.00524EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-46734

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00616EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:20 a.m.4 views

CVE-2023-21230

In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged apps to receive a broadcast about WiFi access point change and its BSSID or SSID due to a precondition check failure. This could lead to local information disclosure with no additional execution...

5.5CVSS5.7AI score0.00082EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/04/27 12:0 a.m.2 views

Detecting Speculative Data Flow Vulnerabilities Using Weakest Precondition Reasoning

Speculative execution is a hardware optimisation technique where a processor, while waiting on the completion of a computation required for an instruction, continues to execute later instructions based on a predicted value of the pending computation. It came to the forefront of security research ...

7.3AI score
Exploits0
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.5 views

SwiftASN1 安全漏洞

SwiftASN1 is an open source ASN.1 implementation of Swift by Apple. A security vulnerability exists in SwiftASN1 versions prior to 1.3.0 that stems from incorrect assumptions about the form of an object when parsing certain BER/DER constructs, which triggers a precondition failure when these...

7.5CVSS6.4AI score0.00319EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/06/11 8:54 p.m.23 views

CVE-2024-27309

A flaw was found in Apache Kafka during the migration from ZooKeeper ZK to KRaft mode that affects Access Control List ACL enforcement. Specifically, when an ACL is removed from a resource and the resource retains two or more other ACLs, Kafka may incorrectly treat the resource as having only one...

6.8CVSS7.1AI score0.01125EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/05/29 6:37 p.m.34 views

MinIO information disclosure vulnerability

Impact If-Modified-Since If-Unmodified-Since Headers when used with anonymous requests by sending a random object name requests you can figure out if the object exists or not on the server on a specific bucket and also gain access to some amount of information such as Last-Modified of the latest...

5.3CVSS6.2AI score0.00549EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2024/03/06 11:15 a.m.16 views

BIT-TENSORFLOW-2022-21736 Undefined behavior in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseTensorSliceDataset has an undefined behavior: under certain condition it can be made to dereference a nullptr value. The 3 input arguments to SparseTensorSliceDataset represent a sparse tensor. However, there are...

7.6CVSS6.7AI score0.00746EPSS
Exploits1References4
OSV
OSV
added 2023/10/16 7:6 p.m.24 views

CVE-2023-45150 Inviting excessive long email addresses to a calendar event makes the Nextcloud server unresponsive

Nextcloud calendar is a calendar app for the Nextcloud server platform. Due to missing precondition checks the server was trying to validate strings of any length as email addresses even when megabytes of data were provided, eventually making the server busy and unresponsive. It is recommended th...

4.3CVSS4.7AI score0.00386EPSS
Exploits1References5
Nextcloud
Nextcloud
added 2023/10/16 7:22 a.m.40 views

Inviting excessive long email addresses to a calendar event makes the server unresponsive

None...

4.3CVSS4.8AI score0.00386EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/10/05 8:55 p.m.12 views

GHSA-3MWQ-H3G6-FFHM Vapor's incorrect request error handling triggers server crash

Vapor incorrectly handles errors encountered during parsing of HTTP 1.x requests, triggering a precondition failure in swift-nio due to API misuse and causing immediate termination of the server process. Impact This is a denial of service vulnerability, impacting all users of affected versions of...

5.3CVSS5.5AI score0.00597EPSS
Exploits0References5
Snyk
Snyk
added 2023/10/05 8:55 p.m.4 views

Improper Handling of Exceptional Conditions

Overview vapor/vapor is an a server-side Swift HTTP web framework. Affected versions of this package are vulnerable to Improper Handling of Exceptional Conditions due to the incorrect handling of HTTP 1.x request parsing errors, an attacker can trigger a precondition failure in swift-nio by...

5.3CVSS6.9AI score0.00597EPSS
Exploits0References2
OSV
OSV
added 2023/08/14 10:15 p.m.6 views

CVE-2023-21230

In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged apps to receive a broadcast about WiFi access point change and its BSSID or SSID due to a precondition check failure. This could lead to local information disclosure with no additional execution...

5.5CVSS5.9AI score0.00082EPSS
Exploits0References1
Rows per page
Query Builder