|
221371
|
7.8 |
HIGH
Local
|
google
|
android
|
In updateAssistMenuItems of Editor.java, there is a possible escape from the Setup Wizard due to a missing permission check. This could lead to local escalation of privilege and FRP bypass with no ad…
|
CWE-862
Missing Authorization
|
CVE-2019-2026
|
2024-11-21 13:40 |
2019-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221372
|
7.3 |
HIGH
Network
|
oracle
|
retail_convenience_store_back_office
|
Vulnerability in the Oracle Retail Convenience Store Back Office component of Oracle Retail Applications (subcomponent: Level 3 Maintenance Functions). The supported version that is affected is 3.6. …
|
NVD-CWE-noinfo
|
CVE-2019-2424
|
2024-11-21 13:40 |
2019-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221373
|
5.5 |
MEDIUM
Local
|
google
|
android
|
The permissions on /proc/iomem were world-readable. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Pr…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-2001
|
2024-11-21 13:40 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221374
|
7.8 |
HIGH
Local
|
google
|
android
|
In several functions of binder.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User in…
|
CWE-787
CWE-416
Out-of-bounds Write
Use After Free
|
CVE-2019-2000
|
2024-11-21 13:40 |
2019-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221375
|
3.8 |
LOW
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln…
|
NVD-CWE-noinfo
|
CVE-2019-2501
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221376
|
8.8 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln…
|
NVD-CWE-noinfo
|
CVE-2019-2500
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221377
|
6.1 |
MEDIUM
Network
|
oracle
|
peoplesoft_enterprise_peopletools
|
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Search Functionality). Supported versions that are affected are 8.55, 8.56 and 8.57. …
|
NVD-CWE-noinfo
|
CVE-2019-2499
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221378
|
8.2 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle Partner Management component of Oracle E-Business Suite (subcomponent: Partner Dash board). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4…
|
NVD-CWE-noinfo
|
CVE-2019-2498
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221379
|
8.2 |
HIGH
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12…
|
NVD-CWE-noinfo
|
CVE-2019-2497
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221380
|
4.7 |
MEDIUM
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12…
|
NVD-CWE-noinfo
|
CVE-2019-2496
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
