|
1901
|
- |
|
-
|
-
|
The pagination class includes arbitrary parameters in links, leading to cache poisoning attack vectors.
|
-
|
CVE-2024-27185
|
2024-09-22 14:15 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1902
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32830
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1903
|
6.7 |
MEDIUM
Local
|
linuxfoundation
mediatek
google
|
yocto
iot_yocto
android
|
In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-32829
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1904
|
6.7 |
MEDIUM
Local
|
mediatek
google
|
iot_yocto
android
|
In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed fo…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-32828
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1905
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In camera middleware, there is a possible out of bounds write due to a missing input validation. This could lead to local escalation of privilege with System execution privileges needed. User interac…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32827
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1906
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In camera middleware, there is a possible out of bounds write due to a missing input validation. This could lead to local escalation of privilege with System execution privileges needed. User interac…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32826
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1907
|
9.8 |
CRITICAL
Network
mediatek
|
lr11
lr12a
lr13
nr15
nr16
nr17
|
In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User inte…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-20819
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1908
|
7.5 |
HIGH
Network
ibm
|
maximo_application_suite
|
IBM Maximo Application Suite - Manage Component 8.10, 8.11, and 9.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information using man i…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-37068
|
2024-09-21 19:15 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1909
|
8.2 |
HIGH
Network
|
ibm
|
security_verify_access_docker
security_verify_access
|
IBM Security Verify Access 10.0.0 through 10.0.8 OIDC Provider could allow a remote authenticated attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit …
|
CWE-601
Open Redirect
|
CVE-2024-35133
|
2024-09-21 19:15 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1910
|
8.1 |
HIGH
Network
|
ibm
|
app_connect_enterprise_certified_container
|
IBM App Connect Enterprise Certified Container 5.0, 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, and 12.1 does not limit calls to unshare in run…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2022-43915
|
2024-09-21 19:15 |
2024-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
