Memory corruption

Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake...

Memory corruption

Memory corruption while parsing qcp clip with invalid chunk data size...

Code injection

Transient DOS while processing channel information for speaker protection v2 module in ADSP...

Authentication flaw

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number...

Cross site request forgery (csrf)

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers...

Command injection

Transient DOS while processing PDU Release command with a parameter PDU ID out of range...

Memory corruption

Memory corruption while invoking IOCTLs calls in Automotive Multimedia...

Memory corruption

Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem...

Memory corruption

Memory corruption while invoking HGSL IOCTL context create...

Memory corruption

Memory corruption in Audio while processing RT proxy port register driver...

Memory corruption

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE...

Design/Logic Flaw

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR...

Authorization

Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame...

Memory corruption

Memory corruption while processing MBSSID beacon containing several subelement IE...

Code injection

Transient DOS while processing CAG info IE received from NW...

Memory corruption

Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render...

Memory corruption

Memory corruption while processing the IOCTL FM HCI WRITE request...

Information disclosure

Information Disclosure while processing IOCTL request in FastRPC...

Design/Logic Flaw

Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16...

Race condition

Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing...

Cross site scripting

Stored XSS Vulnerability in M-Files Web versions before 23.8 allows attacker to execute script on users browser via stored HTML document within limited time period...

Out-of-bounds

in OpenHarmony v3.2.4 and prior versions allow a local attacker cause information leak through out-of-bounds Read...

Information disclosure

in OpenHarmony v3.2.4 and prior versions allow a local attacker cause sensitive information leak through insecure storage...

Double free

In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyowritecontrol Since tomoyowritecontrol updates head-writebuf when write of long lines is requested, we need to fetch head-writebuf after head-iosem is held. Otherwise, concurrent write requests c...

Double free

in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through use after free...

Type confusion

in OpenHarmony v3.2.4 and prior versions allow a local attacker cause apps crash through type confusion...

Input validation

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause information leak through improper preservation of permissions...

Out-of-bounds

In lk, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08528255; Issue ID: ALPS08528255...

Out-of-bounds

In da, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541632; Issue ID: ALPS08541742...

Design/Logic Flaw

In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00348479; Issue ID: MSV-1019...

Design/Logic Flaw

In pq, there is a possible write-what-where condition due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08495937; Issue ID: ALPS08495937...

Design/Logic Flaw

In da, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08355599; Issue ID: ALPS08355599...

Input validation

In wlan driver, there is a possible memory leak due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00351241; Issue ID: MSV-1173...

Out-of-bounds

In flashc, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541635; Issue ID: ALPS08541635...

Out-of-bounds

In battery, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08488849; Issue ID: ALPS08488849...

Out-of-bounds

In pq, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08495932; Issue ID: ALPS08495932...

Information disclosure

In da, there is a possible information disclosure due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541632; Issue ID: ALPS08541632...

Integer overflow

In da, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541686; Issue ID: ALPS08541686...

Design/Logic Flaw

In aee, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08487630; Issue ID: MSV-1020...

Input validation

In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation Patch ID: WCNCR00350938; Issue ID: MSV-1132...

Design/Logic Flaw

In da, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541632; Issue ID: ALPS08541633...

Out-of-bounds

In OPTEE, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08522504; Issue ID: ALPS08522504...

Input validation

In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08477406; Issue ID: MSV-1010...

Information disclosure

In nvram, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08499945; Issue ID: ALPS08499945...

Design/Logic Flaw

In vdec, there is a possible permission bypass due to a permissions bypass. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08509508; Issue ID: ALPS08509508...

Out-of-bounds

In flashc, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541638; Issue ID: ALPS08541638...

Out-of-bounds

In da, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541632; Issue ID: ALPS08541687...

Information disclosure

In da, there is a possible information disclosure due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541632; Issue ID: ALPS08541741...

Sql injection

A vulnerability was found in SourceCodester Best POS Management System 1.0. It has been classified as critical. Affected is an unknown function of the file adminclass.php. The manipulation of the argument img leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

Sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Online Mobile Management Store 1.0. This affects an unknown part of the file /admin/orders/vieworder.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...