16 matches found
CVE-2024-34645
Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications...
EUVD-2006-3494
Malware in sbrugna...
EUVD-2024-34944
Malicious code in bioql PyPI...
Unspecified vulnerability in Apple macOS Sequoia and Apple macOS Sonoma (CNVD-2025-18417)
Apple macOS Sequoia and Apple macOS Sonoma are both operating systems from the American company Apple. Apple macOS Sequoia and Apple macOS Sonoma contain a security vulnerability that can be exploited by attackers to hijack permissions granted to other privileged applications...
Apple macOS 安全漏洞
Apple macOS Sequoia and Apple macOS Sonoma are both operating systems from the American company Apple. Apple macOS Sequoia and Apple macOS Sonoma contain a security vulnerability that can be exploited by attackers to hijack permissions granted to other privileged applications...
CVE-2024-34645
Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications...
CVE-2024-34645
Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications...
CVE-2024-34645
The CVE-2024-34645 issue is confirmed in ThemeCenter prior to the SMR Sep-2024 Release 1. It stems from improper input validation, enabling a physical attacker to install privileged applications. Evidence across connected docs (PT-2024-26064, Red Hat/NVD/NEWS references) identifies ThemeCenter as...
CVE-2024-34645
Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications...
Samsung Account Implicit Intent Hijacking Vulnerability
Samsung Account is a mobile account feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in Samsung Account. The vulnerability stems from hijacking of non-privileged applications and can be exploited by attackers to bypass user confirmation of Samsung Accou...
Google Android HTC OEM fastboot command elevation of privilege vulnerability
Google Android is a mobile operating system based on the Linux open kernel. Google Android has a security vulnerability in the HTC OEM fastboot command implementation, which allows remote attackers to exploit the vulnerability to submit special applications with elevated privileges...
javaws vulnerabilities
Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.213 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to...
CVE-2006-3499
The dynamic linker dyld in Apple Mac OS X 10.3.9 allows local users to obtain sensitive information via unspecified dynamic linker options that affect the use of standard error stderr by privileged applications...
Win32 'Shatter' attacks
Is priveleged application doesn't check system messages data it may be possible to execute code in application context by setting callback functions or excluding limits causing buffer overflws...
Re: OpenBSD Security Advisory
Hi, Here is another exploit for an application fstat that OpenBSD's format string audit has seemingly forgotten about. What I would like to know is why this and a number of other privileged applications have security vulnerabilities in them. They WERE fixed, but NO ADVISORY nor ANY MENTION IN THE...
sshd.install.risks.txt
Date: Mon, 10 May 1999 22:26:19 +0200 From: "GWDVMS::MOELLER" Subject: Risks of upgrading a UNIX system When was the last time you rebuilt all privileged suid root' applications when upgrading a unix system, just in case? I'm pretty sure one can find small print' that demands this, however I'm...