Lucene search
K

18 matches found

NVD
NVD
added 2026/06/12 6:16 p.m.11 views

CVE-2026-47223

NanaZip is the 7-Zip derivative intended for the modern Windows experience. From version 3.0.1000.0 to before version 6.0.1698.0, a heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser in NanaZip via the upstream 7-Zip AvbHandler. A 32-bit unsigned integer overflow ...

5.4CVSS0.0018EPSS
Exploits0References1
NVD
NVD
added 2026/06/12 5:16 p.m.15 views

CVE-2026-47222

NanaZip is the 7-Zip derivative intended for the modern Windows experience. From version 3.0.1000.0 to before version 6.0.1698.0, a heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser in NanaZip via the upstream 7-Zip AvbHandler. An unsigned integer underflow in a...

5.4CVSS0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/12 5:6 p.m.8 views

EUVD-2026-36508

NanaZip is the 7-Zip derivative intended for the modern Windows experience. From version 3.0.1000.0 to before version 6.0.1698.0, a heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser in NanaZip via the upstream 7-Zip AvbHandler. A 32-bit unsigned integer overflow ...

5.4CVSS5.4AI score0.0018EPSS
Exploits0References1
CVE
CVE
added 2026/06/12 5:6 p.m.12 views

CVE-2026-47223

NanaZip (derivative of 7‑Zip) is affected from 3.0.1000.0 up to before 6.0.1698.0. The vulnerability is a heap out‑of‑bounds read in the AVB vbmeta image parser (AvbHandler) caused by a 32‑bit unsigned overflow in the bounds check (pos + ht.salt_len > descSize) that lets an attacker‑controlled...

5.4CVSS5.4AI score0.0018EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.13 views

PT-2026-48944

NanaZip is the 7-Zip derivative intended for the modern Windows experience. From version 3.0.1000.0 to before version 6.0.1698.0, a heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser in NanaZip via the upstream 7-Zip AvbHandler. A 32-bit unsigned integer overflow ...

5.4CVSS5.3AI score0.0018EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.14 views

PT-2026-48929

Name of the Vulnerable Software and Affected Versions NanaZip versions 3.0.1000.0 through 6.0.1697.0 Description A heap out-of-bounds read exists in the Android Verified Boot AVB vbmeta image parser via the upstream 7-Zip AvbHandler. An unsigned integer underflow in a bounds check allows an...

5.4CVSS5.2AI score0.0017EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.7 views

CVE-2025-48613

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.1AI score0.00088EPSS
Exploits0References1
NVD
NVD
added 2026/03/02 7:16 p.m.7 views

CVE-2025-48613

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00088EPSS
Exploits0References1
CVE
CVE
added 2026/03/02 6:42 p.m.15 views

CVE-2025-48613

The CVE-2025-48613 entry describes a vulnerability in VBMeta where an attacker can modify and resign VBMeta using a test key, assuming the original image was signed with the same key. This could enable local privilege escalation with no additional privileges or user interaction. Connected sources...

7.8CVSS6.1AI score0.00088EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/02 6:42 p.m.3 views

CVE-2025-48613

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.1AI score0.00088EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/02 6:42 p.m.2 views

CVE-2025-48613

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00088EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/02 6:42 p.m.5 views

EUVD-2025-208210

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00088EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/02 6:42 p.m.25 views

CVE-2025-48613

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00088EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.8 views

PT-2026-22668

Name of the Vulnerable Software and Affected Versions VBMeta affected versions not specified Description A flaw exists in VBMeta that may allow modification and resigning of VBMeta images using a test key, provided the original image was signed with the same key. Successful exploitation could lea...

7.8CVSS5.9AI score0.00088EPSS
Exploits0References4
OSV
OSV
added 2026/03/01 12:0 a.m.4 views

ASB-A-416491056

In VBMeta, there is a possible way to modify and resign VBMeta using a test key, assuming the original image was previously signed with the same key. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.1AI score0.00088EPSS
Exploits0References1
OSV
OSV
added 2023/04/01 12:0 a.m.32 views

ASB-A-262892300

In buildPropFile of filesystem.go, there is a possible insecure hash due to an improperly used crypto. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS6.7AI score0.0009EPSS
Exploits0References3
OSV
OSV
added 2020/06/11 3:15 p.m.4 views

CVE-2020-0151

In avbvbmetaimageverify of avbvbmetaimage.c there is a possible out of bounds read due to a missing bounds check. This could lead to a local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android...

4.4CVSS5.9AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2020/06/11 3:15 p.m.4 views

CVE-2020-0152

In avbvbmetaimageverify of avbvbmetaimage.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android I...

4.4CVSS6.5AI score0.00147EPSS
Exploits0References1
Rows per page
Query Builder