Lucene search
K

16 matches found

EUVD
EUVD
added 2025/12/08 6:30 p.m.7 views

EUVD-2025-201751

In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

4.6CVSS5.6AI score0.00093EPSS
Exploits0References3
OSV
OSV
added 2025/12/08 5:16 p.m.4 views

CVE-2025-48614

In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

4.6CVSS5.9AI score0.00093EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/08 4:57 p.m.17 views

CVE-2025-48614

In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00093EPSS
Exploits0References2
CVE
CVE
added 2025/12/08 4:57 p.m.11 views

CVE-2025-48614

CVE-2025-48614 : Android recovery path bug in rebootWipeUserData (RecoverySystem.java) allows factory reset while in DSU mode due to a missing permission check. This creates a physical denial-of-service risk with no extra privileges and no user interaction needed. Affected: Android framework comp...

4.6CVSS5.7AI score0.00093EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/23 12:0 a.m.7 views

PT-2025-43492

In rebootWipeUserData of RecoverySystem.java, there is a possible way to factory reset the device while in DSU mode due to a missing permission check. This could lead to physical denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00093EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-6779

Malware in sbrugna...

4CVSS6.4AI score0.02091EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-0777

Malware in sbrugna...

4CVSS6.4AI score0.01318EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-8031

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.03595EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/29 12:0 a.m.4 views

CVE-2025-51045

Phpgurukul Pre-School Enrollment System 1.0 contains a SQL injection vulnerability in the /admin/password-recovery.php file. This vulnerability is attributed to the insufficient validation of user input for the username parameter...

7.3AI score0.00204EPSS
Exploits1References1
Prion
Prion
added 2022/03/30 4:15 p.m.10 views

Design/Logic Flaw

In miniadb, there is a possible way to get read/write access to recovery system properties due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.6CVSS7.8AI score0.00107EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2014/02/27 10:31 p.m.25 views

Cisco Unified Contact Center Express DRS Sensitive Information Disclosure Vulnerability

A vulnerability in the disaster recovery system DRS of Cisco Unified Contact Center Express Cisco Unified CCX could allow an authenticated, remote attacker to acquire sensitive information about DRS-related devices. The vulnerability is due to extraneous information included in the web page. An...

4CVSS6.2AI score0.01318EPSS
Exploits0References1
NVD
NVD
added 2014/02/27 1:55 a.m.13 views

CVE-2014-0746

The disaster recovery system DRS in Cisco Unified Contact Center Express Unified CCX allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML document, aka Bug ID CSCum95536...

4CVSS5.7AI score0.01318EPSS
Exploits0References2
CVE
CVE
added 2014/02/27 1:0 a.m.45 views

CVE-2014-0746

CVE-2014-0746 affects Cisco Unified Contact Center Express (Unified CCX) Disaster Recovery System (DRS). The issue is an information disclosure: extraneous fields on a DRS web page allow an authenticated, remote attacker to obtain sensitive device information. Root cause is inclusion of sensitive...

4CVSS5.8AI score0.01318EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/02/27 1:0 a.m.21 views

CVE-2014-0746

The disaster recovery system DRS in Cisco Unified Contact Center Express Unified CCX allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML document, aka Bug ID CSCum95536...

5.7AI score0.01318EPSS
Exploits0References2
Prion
Prion
added 2013/12/21 2:22 p.m.14 views

Design/Logic Flaw

The disaster recovery system DRS component in Cisco Unified Communications Manager UCM 9.11 and earlier allows remote authenticated users to obtain sensitive device information by reading "extraneous information" in HTML source code, aka Bug ID CSCuj39249...

4CVSS6.2AI score0.02091EPSS
Exploits0References6Affected Software1
Cisco
Cisco
added 2013/12/18 9:17 p.m.22 views

Cisco Unified Communications Manager Sensitive Information Disclosure Vulnerability

A vulnerability in the disaster recovery system DRS of Cisco Unified Communications Manager UCM could allow an authenticated, remote attacker to acquire sensitive information about DRS-related devices. The vulnerability is due to extraneous information included in the web page. An attacker could...

4CVSS2.3AI score0.02091EPSS
Exploits0References1
Rows per page
Query Builder