CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-26096

Null pointer dereference vulnerability in parser_ispe function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：30 | 回复：0
CVE-2022-26097

Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：37 | 回复：0
CVE-2022-26098

Heap-based buffer overflow vulnerability in sheifd_create function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：42 | 回复：0
CVE-2022-26099

Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：43 | 回复：0
CVE-2022-27528

A maliciously crafted DWFX and SKP files in Autodesk Navisworks 2022 can be used to trigger use-after-free vulnerability. Exploitation of this vulnerability may lead to code execution.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：53 | 回复：0
CVE-2022-27567

Null pointer dereference vulnerability in parser_hvcC function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attackers.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：72 | 回复：0
CVE-2022-27568

Heap-based buffer overflow vulnerability in parser_iloc function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：123 | 回复：0
CVE-2022-27569

Heap-based buffer overflow vulnerability in parser_infe function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：78 | 回复：0
CVE-2022-27570

Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：78 | 回复：0
CVE-2022-27571

Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：76 | 回复：0
CVE-2022-27572

Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：80 | 回复：0
CVE-2022-27573

Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attackers.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：102 | 回复：0
CVE-2022-27574

Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attacker.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：237 | 回复：0
CVE-2022-27575

Information exposure vulnerability in One UI Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：111 | 回复：0
CVE-2022-27576

Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：60 | 回复：0
CVE-2022-27577

The vulnerability in the MSC800 in all versions before 4.15 allows for an attacker to predict the TCP initial sequence number. When the TCP sequence is predictable, an attacker can send packets that a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：55 | 回复：0
CVE-2022-27578

An attacker can perform a privilege escalation through the SICK OEE if the application is installed in a directory where non authenticated or low privilege users can modify its content.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：48 | 回复：0
CVE-2022-27821

Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：39 | 回复：0
CVE-2022-27822

Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：37 | 回复：0
CVE-2022-27823

Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：44 | 回复：0
CVE-2022-27824

Improper size check of in sapefd_parse_meta_DESCRIPTION function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：52 | 回复：0
CVE-2022-27825

Improper size check in sapefd_parse_meta_HEADER function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：34 | 回复：0
CVE-2022-27826

Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：36 | 回复：0
CVE-2022-27827

Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：33 | 回复：0
CVE-2022-27828

Improper validation vulnerability in MediaMonitorEvent prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：43 | 回复：0
CVE-2022-27829

Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：51 | 回复：0
CVE-2022-27830

Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：41 | 回复：0
CVE-2022-27831

Improper boundary check in sflvd_rdbuf_bits of libsflvextractor prior to SMR Apr-2022 Release 1 allows attackers to read out of bounds memory.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：38 | 回复：0
CVE-2022-27832

Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via a crafted media file.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：36 | 回复：0
CVE-2022-27833

Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds write by integer overflow.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：31 | 回复：0
CVE-2022-27834

Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-2022 Release 1 allows attackers to perform malicious actions.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：30 | 回复：0
CVE-2022-27835

Improper boundary check in UWB firmware prior to SMR Apr-2022 Release 1 allows arbitrary memory write.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：31 | 回复：0
CVE-2022-27836

Improper access control and path traversal vulnerability in Storage Manager and Storage Manager Service prior to SMR Apr-2022 Release 1 allow local attackers to access arbitrary system files without a ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：33 | 回复：0
CVE-2022-27837

A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R(11.0) and 13.0.1.1 in Android S(12.0) allows attacker to access the file with system privilege.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：31 | 回复：0
CVE-2022-27838

Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to access the file with system privilege.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：30 | 回复：0
CVE-2022-27839

Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1 allows attackers to access bookmark tab without proper credentials.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：32 | 回复：0
CVE-2022-27840

Improper access control vulnerability in SamsungRecovery prior to version 8.1.43.0 allows local attckers to delete arbitrary files as SamsungRecovery permission.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：50 | 回复：0
CVE-2022-27841

Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen that is previously running without authentication……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：34 | 回复：0
CVE-2022-27842

DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4 allows attacker to execute abitrary code.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：30 | 回复：0
CVE-2022-27843

DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute abitrary code.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:13 | 阅读：27 | 回复：0