|
211251
|
8.3 |
HIGH
Adjacent
|
broadcom
redhat
|
brcmfmac_driver
enterprise_linux
|
The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a re…
|
CWE-20
Improper Input Validation
|
CVE-2019-9503
|
2024-11-21 13:51 |
2020-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211252
|
8.3 |
HIGH
Adjacent
|
broadcom
linux
|
brcmfmac_driver
linux_kernel
|
The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malic…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9500
|
2024-11-21 13:51 |
2020-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211253
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2019
|
A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with t…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-9510
|
2024-11-21 13:51 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211254
|
9.8 |
CRITICAL
Network
|
mycarcontrols
|
mycar_controls
|
The MyCar Controls of AutoMobility Distribution Inc., mobile application contains hard-coded admin credentials. A remote unauthenticated attacker may be able to send commands to and retrieve data fro…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2019-9493
|
2024-11-21 13:51 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211255
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the Titan M handling of cryptographic operations, there is a possible information disclosure due to an unusual root cause. This could lead to local information disclosure with no additional execut…
|
NVD-CWE-noinfo
|
CVE-2019-9465
|
2024-11-21 13:51 |
2020-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211256
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In DCRYPTO_equals of compare.c, there is a possible timing attack due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User i…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2019-9472
|
2024-11-21 13:51 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211257
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In set_outbound_iatu of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. Us…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9471
|
2024-11-21 13:51 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211258
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In dma_sblk_start of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9470
|
2024-11-21 13:51 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211259
|
7.8 |
HIGH
Local
|
google
|
android
|
In km_compute_shared_hmac of km4.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9469
|
2024-11-21 13:51 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211260
|
7.8 |
HIGH
Local
|
google
|
android
|
In export_key_der of export_key.cpp, there is possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User in…
|
CWE-787
CWE-415
Out-of-bounds Write
Double Free
|
CVE-2019-9468
|
2024-11-21 13:51 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
