|
312871
|
- |
|
-
|
-
|
In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to a write size mismatch. This could lead to an elevation of privileges where the user can start an activ…
|
-
|
CVE-2017-13315
|
2024-11-21 02:35 |
2024-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312872
|
5.5 |
MEDIUM
Local
|
justdan96
|
tsmuxer
|
A heap-based buffer under-read in tsMuxer version nightly-2024-05-12-02-01-18 allows attackers to cause Denial of Service (DoS) via a crafted MOV video file.
|
CWE-125
Out-of-bounds Read
|
CVE-2024-52613
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312873
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the autofill service, the package name that is provided by the app process is trusted inappropriately. This could lead to information disclosure with no additional execution privileges needed. U…
|
NVD-CWE-noinfo
|
CVE-2017-13227
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312874
|
7.5 |
HIGH
Network
|
adonesevangelista
|
agri-trading_online_shopping_system
|
A business logic vulnerability exists in the Add to Cart function of itsourcecode Agri-Trading Online Shopping System 1.0, which allows remote attackers to manipulate the quant parameter when adding …
|
NVD-CWE-noinfo
|
CVE-2024-50968
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312875
|
7.8 |
HIGH
Local
|
google
|
android
|
In PMRWritePMPageList of pmr.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution p…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23715
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312876
|
7.8 |
HIGH
Local
|
google
|
android
|
In PVRSRVRGXKickTA3DKM of rgxta3d.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional e…
|
NVD-CWE-noinfo
|
CVE-2023-35686
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312877
|
7.8 |
HIGH
Local
|
google
|
android
|
In DevmemIntChangeSparse of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no a…
|
NVD-CWE-noinfo
|
CVE-2023-35659
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312878
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu/vcn: remove irq disabling in vcn 5 suspend
We do not directly enable/disable VCN IRQ in vcn 5.0.0.
And we do not handl…
|
NVD-CWE-noinfo
|
CVE-2024-46820
|
2024-11-21 02:34 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312879
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nilfs2: protect references to superblock parameters exposed in sysfs
The superblock buffers of nilfs2 can not only be overwritten…
|
NVD-CWE-noinfo
|
CVE-2024-46780
|
2024-11-21 02:31 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312880
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm/slub: add check for s->flags in the alloc_tagging_slab_free_hook
When enable CONFIG_MEMCG & CONFIG_KFENCE & CONFIG_KMEMLEAK, t…
|
NVD-CWE-noinfo
|
CVE-2024-46789
|
2024-11-21 02:27 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
