|
223561
|
7.8 |
HIGH
Local
|
mongodb
|
mongodb
|
An unprivileged user or program on Microsoft Windows which can create OpenSSL configuration files in a fixed location may cause utility programs shipped with MongoDB server to run attacker defined c…
|
NVD-CWE-noinfo
|
CVE-2019-2390
|
2024-11-21 13:40 |
2019-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223562
|
4.2 |
MEDIUM
Local
|
mongodb
|
mongodb
|
Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the Mo…
|
CWE-20
Improper Input Validation
|
CVE-2019-2389
|
2024-11-21 13:40 |
2019-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223563
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the endCall() function of TelecomManager.java, there is a possible Denial of Service due to a missing permission check. This could lead to local denial of access to Emergency Services with User ex…
|
CWE-862
Missing Authorization
|
CVE-2019-2137
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223564
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Status::readFromParcel of Status.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileg…
|
CWE-20
CWE-125
Improper Input Validation
Out-of-bounds Read
|
CVE-2019-2136
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223565
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privi…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-2135
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223566
|
7.8 |
HIGH
Local
|
google
|
android
|
In phFriNfc_ExtnsTransceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execut…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2019-2134
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223567
|
7.8 |
HIGH
Local
|
google
|
android
|
In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution pri…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-2133
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223568
|
7.8 |
HIGH
Local
|
google
|
android
|
It is possible to overlay the VPN dialog by a malicious application. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for ex…
|
NVD-CWE-noinfo
|
CVE-2019-2132
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223569
|
7.8 |
HIGH
Local
|
google
|
android
|
An application with overlay permission can display overlays on top of settings UI. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-2131
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223570
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In CompilationJob::FinalizeJob of compiler.cc, there is a possible remote code execution due to type confusion. This could lead to escalation of privilege from a malicious proxy configuration with no…
|
CWE-843
Type Confusion
|
CVE-2019-2130
|
2024-11-21 13:40 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
