|
195671
|
7.8 |
HIGH
Local
|
google
|
android
|
In handleAppLaunch of AppLaunchActivity.java, there is a possible arbitrary activity launch due to a confused deputy. This could lead to local escalation of privilege with no additional execution pri…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2021-0608
|
2024-11-21 14:43 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195672
|
7.8 |
HIGH
Local
|
google
|
android
|
In iaxxx_calc_i2s_div of iaxxx-codec.c, there is a possible hardware port write with user controlled data due to a missing bounds check. This could lead to local escalation of privilege with no addit…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-0607
|
2024-11-21 14:43 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195673
|
6.7 |
MEDIUM
Local
|
google
|
android
|
In drm_syncobj_handle_to_fd of drm_syncobj.c, there is a possible use after free due to incorrect refcounting. This could lead to local escalation of privilege with System execution privileges needed…
|
CWE-416
Use After Free
|
CVE-2021-0606
|
2024-11-21 14:43 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195674
|
4.4 |
MEDIUM
Local
|
google
|
android
|
In pfkey_dump of af_key.c, there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the kernel with System execution privileges needed.…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-0605
|
2024-11-21 14:43 |
2021-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195675
|
4.8 |
MEDIUM
Network
|
cisco
|
finesse
|
Multiple vulnerabilities in the web-based management interface of Cisco Finesse could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the inte…
|
-
|
CVE-2021-1254
|
2024-11-21 14:43 |
2021-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195676
|
7.5 |
HIGH
Network
|
cisco
|
sd-wan_vmanage
catalyst_sd-wan_manager
|
Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated,…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2021-1275
|
2024-11-21 14:43 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195677
|
5.5 |
MEDIUM
Local
|
nvidia
|
virtual_gpu_manager
|
NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), which could allow an attacker to retrieve information that could lead to a Address Space Layout Randomization (AS…
|
NVD-CWE-noinfo
|
CVE-2021-1087
|
2024-11-21 14:43 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195678
|
7.1 |
HIGH
Local
|
nvidia
|
virtual_gpu_manager
|
NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it allows guests to control unauthorized resources, which may lead to integrity and confidentiality loss or …
|
CWE-863
Incorrect Authorization
|
CVE-2021-1086
|
2024-11-21 14:43 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195679
|
7.3 |
HIGH
Local
|
nvidia
|
virtual_gpu_manager
|
NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is the potential to write to a shared memory location and manipulate the data after the data has been…
|
CWE-20
Improper Input Validation
|
CVE-2021-1085
|
2024-11-21 14:43 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195680
|
7.8 |
HIGH
Local
|
nvidia
|
virtual_gpu_manager
|
NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure,…
|
CWE-20
Improper Input Validation
|
CVE-2021-1084
|
2024-11-21 14:43 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
