Lucene search
K

42 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.8 views

CVE-2023-40074

In saveToXml of PersistableBundle.java, invalid data could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.7AI score0.00136EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-15353

Malware in sbrugna...

7.8CVSS7.7AI score0.00187EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-21183

Malware in sbrugna...

5.5CVSS5.6AI score0.00179EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-21048

Malware in sbrugna...

5.5CVSS5.6AI score0.00199EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-26949

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00106EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-32872

Malicious code in bioql PyPI...

9.1CVSS7.3AI score0.01223EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-14841

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.00425EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-25501

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00103EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-53381

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00965EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-41004

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.53028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:48 a.m.5 views

CVE-2024-20123

In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09008925; Issue ID: MSV-1569...

4.4CVSS6.2AI score0.00078EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:3 a.m.9 views

CVE-2024-31317

In multiple functions of ZygoteProcess.java, there is a possible way to achieve code execution as any app via WRITESECURESETTINGS due to unsafe deserialization. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.9AI score0.00779EPSS
Exploits12References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:54 a.m.6 views

CVE-2024-0035

In onNullBinding of TileLifecycleManager.java, there is a possible way to launch an activity from the background due to a missing null check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.1AI score0.00119EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:20 p.m.8 views

CVE-2022-20242

In Telephony, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS6AI score0.00091EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:18 p.m.9 views

CVE-2022-20144

In multiple functions of AvatarPhotoController.java, there is a possible access to content owned by system content providers due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7.1AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:50 p.m.14 views

CVE-2022-20264

In Usage Stats Service, there is a possible way to determine whether an app is installed, without query permissions due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS6.1AI score0.00105EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.7 views

CVE-2020-0388

In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.1AI score0.00169EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:58 p.m.9 views

CVE-2020-0188

In onCreatePermissionRequest of SettingsSliceProvider.java, there is a possible permissions bypass due to a PendingIntent error. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8CVSS8.6AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:17 a.m.5 views

CVE-2019-2225

When pairing with a Bluetooth device, it may be possible to pair a malicious device without any confirmation from the user, and that device may be able to interact with the phone. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is...

8.8CVSS7.3AI score0.00398EPSS
Exploits0References1
NVD
NVD
added 2025/05/13 9:16 p.m.18 views

CVE-2025-43562

ColdFusion versions 2025.1, 2023.13, 2021.19 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could...

9.1CVSS0.33172EPSS
Exploits0References1
Rows per page
Query Builder