5 matches found
EUVD-2021-2999
Malicious code in bioql PyPI...
CVE-2021-0380
In onReceive of DcTracker.java, there is a possible way to trigger a provisioning URL and modify other telephony settings due to a missing permission check. This could lead to local escalation of privilege during the onboarding flow with no additional execution privileges needed. User interaction...
CVE-2021-0380
CVE-2021-0380 affects Android 11 via DcTracker.java onReceive, where a missing permission check allows triggering a provisioning URL and altering telephony settings, enabling local elevation of privilege during onboarding without extra privileges. Exploitation requires no user interaction per the...
CVE-2021-0380
In onReceive of DcTracker.java, there is a possible way to trigger a provisioning URL and modify other telephony settings due to a missing permission check. This could lead to local escalation of privilege during the onboarding flow with no additional execution privileges needed. User interaction...
The vulnerability of the Settings component of the Oracle Advanced Outbound Telephony application allows a perpetrator to gain access to read, modify, add, or delete data.
The vulnerability of the Settings component of the Oracle Advanced Outbound Telephony application is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain read, modify, add, or delete access to data using the HTTP protocol...