24 matches found
PT-2024-39824 · Tungsten Automation · Tungsten Automation Power Pdf
Name of the Vulnerable Software and Affected Versions: Tungsten Automation Power PDF affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where the target must visit a malicious...
CVE-2023-21193
CVE-2023-21193 is a vulnerability in Android 13 where the VideoFrame component in VideoFrame.h can abort due to an integer overflow, potentially enabling remote information disclosure without user interaction. The CVE is listed in multiple sources (NVD, Red Hat, PRION, OSV) with the same basic de...
Security Bulletin: OpenSSL vulnerabilities affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter systems
Summary OpenSSL vulnerabilities affect IBM Integrated Management Module II IMM2 for System x, Flex and BladeCenter systems. Vulnerability Details Summary OpenSSL vulnerabilities affect IBM Integrated Management Module II IMM2 for System x, Flex and BladeCenter systems. Vulnerability Details CVE-I...
CVE-2021-38930
The CVE-2021-38930 issue affects IBM System Storage DS8000 Management Console (HMC) for R8.5 (88.5x.x.x), R9.1 (89.1x.0.0), and R9.2 (89.2x.0.0). A remote attacker could obtain sensitive information via unpublished URLs. IBM’s bulletin lists CVSS ~5.3 base (3.0) with a network attack vector, and ...
CVE-2020-0499
In FLACbitreaderreadricesignedblock of bitreader.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...
CVE-2020-0460
CVE-2020-0460 affects Android 11, in CertInstaller.java (createNameCredentialDialog). Root cause: a logic error that can improperly install certificates, leading to remote information disclosure with no privileges and no user interaction required. Public details come from Android 2020-12-01/12-05...
ASB-A-150160279
In Parseins of easmdls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure in the media extractor process with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2020-0200
CVE-2020-0200 is an Android 10 issue affecting the Media Framework: a missing bounds check in ReadLittleEndian within raw_bit_reader.cc can trigger an out-of-bounds read and information disclosure. The NVD entry notes network access as the attack vector with no execution privileges, while the CVS...
CVE-2020-0212
In onBufferDestroyed of InputBufferManager.cpp, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android...
CVE-2019-2227
In DeepCopy of btifav.cc, there is a possible out of bounds read due to improper casting. This could lead to remote information disclosure over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...
CVE-2019-9422
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111214766...
CVE-2019-9321
In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111208713...
Out-of-bounds
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-121325979...
Information disclosure
In libvpx, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-80479354...
Out-of-bounds
In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111214739...
CVE-2019-9428
CVE-2019-9428 affects the Android Framework. The issue arises from BROWSEABLE intents that can allow remote disclosure of sensitive URLs, with exploitation requiring user interaction. Affected product/version: Android 10 (Android Framework). Root cause: abuse of BROWSEABLE intents enabling inform...
CVE-2019-9362
CVE-2019-9362 affects the Android 10 libSACdec component, where a missing bounds check can cause an out-of-bounds read and potential information disclosure. The issue is described as a remote information disclosure vulnerability with user interaction required for exploitation; no exploitation det...
CVE-2019-9318
In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111764725...
CVE-2018-9358
CVE-2018-9358 describes an out-of-bounds read in Bluetooth code path: in gatts_process_attribute_req (gatt_sc.cc), a missing bounds check can read uninitialized data, enabling remote information disclosure in the Bluetooth process without extra privileges and with no user interaction. Affected: A...
CVE-2017-13259
CVE-2017-13259 affects Android devices. The vulnerability arises from out-of-bounds reads in sdp_discovery.cc due to missing bounds checks, potentially enabling remote information disclosure without privileges or user interaction. Affected Android versions include 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7...