| Page(s) : 1 ... 530 531 532 533 534 535 536 537 538 539 [540] 541 542 543 544 545 546 547 548 549 550 ... | Result(s) : 299727 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-04-08 | CVE-2025-20943 | cve | Out-of-bounds write in secfr trustlet prior to SMR Apr-2025 Release 1 allows local privileged attackers to cause memory corruption. |
| N/A | 2025-04-08 | CVE-2025-20942 | cve | Improper Verification of Intent by Broadcast Receiver in DeviceIdService prior to SMR Apr-2025 Release 1 allows local attackers to reset OAID. |
| N/A | 2025-04-08 | CVE-2025-20941 | cve | Improper access control in InputManager to SMR Apr-2025 Release 1 allows local attackers to access the scancode of specific input device. |
| N/A | 2025-04-08 | CVE-2025-20940 | cve | Improper handling of insufficient permission in Samsung Device Health Manager Service prior to SMR Apr-2025 Release 1 allows local attackers to access provider in SDMHS. |
| N/A | 2025-04-08 | CVE-2025-20939 | cve | Improper authorization in wireless download protocol in Galaxy Watch prior to SMR Apr-2025 Release 1 allows physical attackers to update device unique identifier of Watch devices. |
| N/A | 2025-04-08 | CVE-2025-20938 | cve | Improper access control in SamsungContacts prior to SMR Apr-2025 Release 1 allows local attackers to access protected data in SamsungContacts. |
| N/A | 2025-04-08 | CVE-2025-20936 | cve | Improper access control in HDCP trustlet prior to SMR Apr-2025 Release 1 allows local attackers with shell privilege to escalate their privileges to root. |
| N/A | 2025-04-08 | CVE-2025-20935 | cve | Improper handling of insufficient permission or privileges in ClipboardService prior to SMR Apr-2025 Release 1 allows local attackers to access files with system privilege. User... |
| 5.5 | 2025-04-08 | CVE-2025-20934 | cve | Improper access control in Sticker Center prior to SMR Apr-2025 Release 1 allows local attackers to access image files with system privilege. |
| 9.1 | 2025-04-08 | CVE-2025-2004 | cve | The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up... |
| 8.8 | 2025-04-08 | CVE-2025-1095 | cve | IBM Personal Communications v14 and v15 include a Windows service that is vulnerable to local privilege escalation (LPE). The vulnerability allows any interactively logged in us... |
| N/A | 2025-04-08 | CVE-2025-0361 | cve | During an annual penetration test conducted on behalf of Axis Communications, Truesec discovered a flaw in the VAPIX Device Configuration framework that allowed for unauthentica... |
| N/A | 2025-04-08 | CVE-2024-55354 | cve | Lucee before 5.4.7.3 LTS and 6 before 6.1.1.118, when an attacker can place files on the server, is vulnerable to a protection mechanism failure that can let an attacker run cod... |
| 9.8 | 2025-04-08 | CVE-2024-54092 | cve | A vulnerability has been identified in Industrial Edge Device Kit - arm64 V1.17 (All versions), Industrial Edge Device Kit - arm64 V1.18 (All versions), Industrial Edge Device K... |
| N/A | 2025-04-08 | CVE-2024-54025 | cve | An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiIsolator CLI before version 2.4.6... |
| N/A | 2025-04-08 | CVE-2024-54024 | cve | An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiIsolator before version 2.4.6 all... |
| N/A | 2025-04-08 | CVE-2024-52981 | cve | An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow. |
| N/A | 2025-04-08 | CVE-2024-52980 | cve | A flaw was discovered in Elasticsearch, where a large recursion using the innerForbidCircularReferences function of the PatternBank class could cause the Elasticsearch node to c... |
| N/A | 2025-04-08 | CVE-2024-52974 | cve | An issue has been identified where a specially crafted request sent to an Observability API could cause the kibana server to crash. A successful attack requires a malicious use... |
| N/A | 2025-04-08 | CVE-2024-52962 | cve | AnĀ Improper Output Neutralization for Logs vulnerability [CWE-117] in FortiAnalyzer version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.13 and... |
| Page(s) : 1 ... 530 531 532 533 534 535 536 537 538 539 [540] 541 542 543 544 545 546 547 548 549 550 ... | Result(s) : 299727 |
