Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-25301

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00134EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:36 a.m.5 views

CVE-2024-20034

In battery, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08488849; Issue ID: ALPS08488849...

7.2CVSS7.1AI score0.00302EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:32 a.m.6 views

CVE-2024-43089

In updateInternal of MediaProvider.java , there is a possible access of another app's files due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.1AI score0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:36 a.m.7 views

CVE-2022-20519

In onCreate of AddAppNetworksActivity.java, there is a possible way for a guest user to configure WiFi networks due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

3.3CVSS7AI score0.00148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:24 p.m.5 views

CVE-2020-27054

In onFactoryReset of BluetoothManagerService.java, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-159061926...

7.8CVSS8.6AI score0.00139EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/06/13 12:0 a.m.4 views

PT-2024-24976 · Lwip · Lwip

Name of the Vulnerable Software and Affected Versions: lwip affected versions not specified Description: The issue is related to a missing bounds check in the lwis initialize transaction fences function of lwis fence.c, which could lead to a possible out of bounds write. This could result in loca...

7.4CVSS6.4AI score0.00075EPSS
Exploits0References5
CNVD
CNVD
added 2024/05/15 12:0 a.m.5 views

Siemens RUGGEDCOM CROSSBOW Privilege Missing Vulnerability

Siemens RUGGEDCOM CROSSBOW is a proven secure access management solution from Siemens, Germany. Siemens RUGGEDCOM CROSSBOW suffers from a privilege miss vulnerability that could cause an unauthenticated user to upload arbitrary files, which could be exploited by an attacker to execute arbitrary...

9.8CVSS7.7AI score0.00792EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/04 3:45 a.m.22 views

CVE-2023-32855

In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07909204; Issue ID: ALPS07909204...

6.9AI score0.00107EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/04 12:0 a.m.6 views

PT-2023-26445 · Unknown · Vowifiservice

Name of the Vulnerable Software and Affected Versions: vowifiservice affected versions not specified Description: The issue is related to a possible missing permission check in vowifiservice. This could lead to local escalation of privilege with no additional execution privileges. Recommendations...

7.8CVSS7.5AI score0.00079EPSS
Exploits0References3
Prion
Prion
added 2022/11/08 10:15 p.m.16 views

Design/Logic Flaw

In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way to bypass user consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Produc...

4.3CVSS7.7AI score0.00088EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2018/06/12 12:0 a.m.4 views

Micro Focus openSUSE Open Build Service Design Vulnerability (CNVD-2018-11432)

Micro Focus openSUSE Open Build Service is a software distribution system from Micro Focus UK. The system builds and distributes software packages from source code in an automated, consistent and repeatable manner. A security vulnerability exists in the 'InitializeDevelPackage' function in Micro...

7.1CVSS7.2AI score0.01208EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2008/05/20 12:44 p.m.1 views

mysql DROP privilege not enforced when renaming tables

MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables...

4.9CVSS7.5AI score0.02848EPSS
Exploits0References4
Rows per page
Query Builder