2291
|
9.8 |
CRITICAL
Network
profelis
|
passbox
|
Improper Authentication, Missing Authentication for Critical Function, Improper Authorization vulnerability in Profelis Informatics and Consulting PassBox allows Authentication Abuse.This issue affec…
|
CWE-287 CWE-306 CWE-285
Improper Authentication Missing Authentication for Critical Function Improper Authorization
|
CVE-2024-7015
|
2024-09-23 18:15 |
2024-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2292
|
- |
|
-
|
-
|
The pagination class includes arbitrary parameters in links, leading to cache poisoning attack vectors.
|
-
|
CVE-2024-27185
|
2024-09-22 14:15 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2293
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In TVAPI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32830
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2294
|
6.7 |
MEDIUM
Local
|
linuxfoundation mediatek google
|
yocto iot_yocto android
|
In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-32829
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2295
|
6.7 |
MEDIUM
Local
|
mediatek google
|
iot_yocto android
|
In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed fo…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-32828
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2296
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In camera middleware, there is a possible out of bounds write due to a missing input validation. This could lead to local escalation of privilege with System execution privileges needed. User interac…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32827
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2297
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In camera middleware, there is a possible out of bounds write due to a missing input validation. This could lead to local escalation of privilege with System execution privileges needed. User interac…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-32826
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2298
|
9.8 |
CRITICAL
Network
mediatek
|
lr11 lr12a lr13 nr15 nr16 nr17
|
In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User inte…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-20819
|
2024-09-22 01:35 |
2023-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2299
|
7.5 |
HIGH
Network
ibm
|
maximo_application_suite
|
IBM Maximo Application Suite - Manage Component 8.10, 8.11, and 9.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information using man i…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-37068
|
2024-09-21 19:15 |
2024-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2300
|
8.2 |
HIGH
Network
|
ibm
|
security_verify_access_docker security_verify_access
|
IBM Security Verify Access 10.0.0 through 10.0.8 OIDC Provider could allow a remote authenticated attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit …
|
CWE-601
Open Redirect
|
CVE-2024-35133
|
2024-09-21 19:15 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|