CVE-2026-20442

In display, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5723...

CVE-2025-10541 Local Privilege Escalation via Insecure Update Mechanism in iMonitor EAM

iMonitor EAM 9.6394 installs a system service eamusbsrv64.exe that runs with NT AUTHORITY\SYSTEM privileges. This service includes an insecure update mechanism that automatically loads files placed in the C:\sysupdate\ directory during startup. Because any local user can create and write to this...

SAMSUNG Magician 安全漏洞

SAMSUNG Magician is an application from the South Korean company Samsung SAMSUNG. Designed to help manage Samsung SSDs. A security vulnerability exists in SAMSUNG Magician version 8.1.0, which originates from the ability to create arbitrary folders in the system privileges directory via symbolic...

CVE-2017-13311

In the read function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can start an activity with system privileges with no additional execution privileges needed. User interactio...

CVE-2023-45777

In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to launch arbitrary activities using system privileges due to Parcel Mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, and more, from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices version 3.5.51, which originates from an improper access control vulnerability in...

TeraRecon AQNetClient安全漏洞

TeraRecon AQNetClient is a background controller service for TeraRecon that is set to run automatically. A security vulnerability exists in TeraRecon AQNetClient 4.4.13, which can be exploited by an attacker to perform system privileged operations via a low-privileged user account...

Google Android Buffer Overflow Vulnerability (CNVD-2020-54136)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. A security vulnerability exists in Android version 11, which stems from a lack of boundary checking and out-of-bounds reads in NFC, and can be exploited by an attacker to cause a local message wi...

CA BrightStor ARCserve Backup Message Engine Insecure Methods (CVE-2007-5328)

CA BrightStor ARCserve Backup products offer data protection for distributed servers, clients, databases and applications. They provide centralized control over a series of distributed operations including Backup and Restore, Data Migration, and Threat Management. There exist unsecured Remote...