| Page(s) : 1 ... 1172 1173 1174 1175 1176 1177 1178 1179 1180 1181 [1182] 1183 1184 1185 1186 1187 1188 1189 1190 1191 1192 ... | Result(s) : 327482 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-21 | CVE-2024-49733 | cve | In reload of ServiceListing.java , there is a possible way to allow a malicious app to hide an NLS from Settings due to a logic error in the code. This could lead to local infor... |
| N/A | 2025-01-21 | CVE-2024-49734 | cve | In multiple functions of ConnectivityService.java, there is a possible way for a Wi-Fi AP to determine what site a device has connected to through a VPN due to side channel info... |
| N/A | 2025-01-21 | CVE-2024-49735 | cve | In multiple locations, there is a possible failure to persist permissions settings due to resource exhaustion. This could lead to local escalation of privilege with no additiona... |
| N/A | 2025-01-21 | CVE-2024-49736 | cve | In onClick of MainClear.java, there is a possible way to trigger factory reset without explicit user consent due to a logic error in the code. This could lead to local denial of... |
| N/A | 2025-01-21 | CVE-2024-49737 | cve | In applyTaskFragmentOperation of WindowOrganizerController.java, there is a possible way to launch arbitrary activities as the system UID due to a logic error in the code. This ... |
| N/A | 2025-01-21 | CVE-2024-49738 | cve | In writeInplace of Parcel.cpp, there is a possible out of bounds write. This could lead to local escalation of privilege with no additional execution privileges needed. User int... |
| N/A | 2025-01-21 | CVE-2024-49742 | cve | In onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an app with notification access in Settings due to a missing permission check. This ... |
| N/A | 2025-01-21 | CVE-2024-49744 | cve | In checkKeyIntentParceledCorrectly of AccountManagerService.java, there is a possible way to bypass parcel mismatch mitigation due to unsafe deserialization. This could lead t... |
| N/A | 2025-01-21 | CVE-2024-49745 | cve | In growData of Parcel.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional executio... |
| N/A | 2025-01-21 | CVE-2024-49747 | cve | In gatts_process_read_by_type_req of gatt_sr.cc, there is a possible out of bounds write due to a logic error in the code. This could lead to remote code execution with no addit... |
| N/A | 2025-01-21 | CVE-2024-49748 | cve | In gatts_process_primary_service_req of gatt_sr.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no addit... |
| N/A | 2025-01-21 | CVE-2024-49749 | cve | In DGifSlurp of dgif_lib.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges ... |
| N/A | 2025-01-21 | CVE-2024-51417 | cve | An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields. |
| N/A | 2025-01-21 | CVE-2024-55504 | cve | An issue in RAR Extractor - Unarchiver Free and Pro v.6.4.0 allows local attackers to inject arbitrary code potentially leading to remote control and unauthorized access to sens... |
| N/A | 2025-01-21 | CVE-2025-23369 | cve | An improper verification of cryptographic signature vulnerability was identified in GitHub Enterprise Server that allowed signature spoofing for unauthorized internal users. In... |
| N/A | 2025-01-21 | CVE-2023-45908 | cve | Homarr before v0.14.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Notebook widget. |
| N/A | 2025-01-21 | CVE-2024-42936 | cve | The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message. |
| N/A | 2025-01-21 | CVE-2025-24024 | cve | Mjolnir is a moderation tool for Matrix. Mjolnir v1.9.0 responds to management commands from any room the bot is member of. This can allow users who aren't operators of the... |
| 5.4 | 2025-01-21 | CVE-2024-21245 | cve | Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Business Logic Infra SEC). Supported versions that are affected are Prior to 9.2.9.... |
| N/A | 2025-01-21 | CVE-2024-48392 | cve | OrangeScrum v2.0.11 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into user email due to lack of input validation, which could le... |
| Page(s) : 1 ... 1172 1173 1174 1175 1176 1177 1178 1179 1180 1181 [1182] 1183 1184 1185 1186 1187 1188 1189 1190 1191 1192 ... | Result(s) : 327482 |
