CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-0306

In addAllPermissions of PermissionManagerService.java, there is a possible permissions bypass when upgrading major Android versions which allows an app to gain the android.permission.ACTIVITY_RECOGNIT ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：41 | 回复：0
CVE-2021-0307

In updatePermissionSourcePackage of PermissionManagerService.java, there is a possible automatic runtime permission grant due to a confused deputy. This could lead to local escalation of privilege all ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：24 | 回复：0
CVE-2021-0308

In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges need ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：33 | 回复：0
CVE-2021-0309

In onCreate of grantCredentialsPermissionActivity, there is a confused deputy. This could lead to local information disclosure and account access with no additional execution privileges needed. User i ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：33 | 回复：0
CVE-2021-0310

In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privil ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：42 | 回复：0
CVE-2021-0311

In ElementaryStreamQueue::dequeueAccessUnitH264() of ESQueue.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：38 | 回复：0
CVE-2021-0312

In WAVSource::read of WAVExtractor.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges nee ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：35 | 回复：0
CVE-2021-0313

In isWordBreakAfter of LayoutUtils.cpp, there is a possible way to slow or crash a TextView due to improper input validation. This could lead to remote denial of service with no additional execution p ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：66 | 回复：0
CVE-2021-0315

In onCreate of GrantCredentialsPermissionActivity.java, there is a possible way to convince the user to grant an app access to an account due to a tapjacking/overlay attack. This could lead to local e ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：62 | 回复：0
CVE-2021-0316

In avrc_pars_vendor_cmd of avrc_pars_tg.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution over Bluetooth with no additional execution ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：41 | 回复：0
CVE-2021-0317

In createOrUpdate of Permission.java and related code, there is possible permission escalation due to a logic error. This could lead to local escalation of privilege with no additional execution privi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：40 | 回复：0
CVE-2021-0318

In appendEventsToCacheLocked of SensorEventConnection.cpp, there is a possible out of bounds write due to a use-after-free. This could lead to local escalation of privilege with no additional executio ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：32 | 回复：0
CVE-2021-0319

In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：47 | 回复：0
CVE-2021-0320

In is_device_locked and set_device_locked of keystore_keymaster_enforcement.h, there is a possible bypass of lockscreen requirements for keyguard bound keys due to a race condition. This could lead to ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：48 | 回复：0
CVE-2021-0321

In enforceDumpPermissionForPackage of ActivityManagerService.java, there is a possible way to determine if a package is installed due to side channel information disclosure. This could lead to local i ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：42 | 回复：0
CVE-2021-0322

In onCreate of SlicePermissionActivity.java, there is a possible misleading string displayed due to improper input validation. This could lead to local information disclosure with User execution privi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：40 | 回复：0
CVE-2020-16146

Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3.x through 3.3.2, and 4.0.x through 4.0.1 has a Buffer Overflow in BluFi provisioning in btc_blufi_recv_handler ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：41 | 回复：0
CVE-2020-26050

SaferVPN for Windows Ver 5.0.3.3 through 5.0.4.15 could allow local privilege escalation from low privileged users to SYSTEM via a crafted openssl configuration file. This issue is similar to CVE-2019 ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：56 | 回复：0
CVE-2020-27637

The R programming language’s default package manager CRAN is affected by a path traversal vulnerability that can lead to server compromise. This vulnerability affects packages installed via the R CMD ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：56 | 回复：0
CVE-2020-24700

OX App Suite through 7.10.3 allows SSRF because GET requests are sent to arbitrary domain names with an initial autoconfig. substring.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：53 | 回复：0
CVE-2020-24701

OX App Suite through 7.10.4 allows XSS via the app loading mechanism (the PATH_INFO to the /appsuite URI).……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：39 | 回复：0
CVE-2020-35653

In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：48 | 回复：0
CVE-2020-35654

In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：40 | 回复：0
CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：42 | 回复：0
CVE-2021-23239

The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform arbitrary directory-existence tests by winning a sudo_edit.c race condition in replacing a user-controlled ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：48 | 回复：0
CVE-2021-23240

selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileges by replacing a temporary file with a symlink to an arbitrary f ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：56 | 回复：0
CVE-2020-14274

Information disclosure vulnerability in HCL Commerce 9.0.1.9 through 9.0.1.14 and 9.1 through 9.1.4 could allow a remote attacker to obtain user personal data via unknown vectors.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：52 | 回复：0
CVE-2020-14275

Security vulnerability in HCL Commerce 9.0.0.5 through 9.0.0.13, 9.0.1.0 through 9.0.1.14 and 9.1 through 9.1.4 could allow denial of service, disclosure of user personal data, and performing of unaut ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：78 | 回复：0
CVE-2020-14341

The Test Connection available in v7.x of the Red Hat Single Sign On application console can permit an authorized user to cause SMTP connections to be attempted to arbitrary hosts and ports of the user ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：89 | 回复：0
CVE-2020-25657

A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. Th ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：85 | 回复：0
CVE-2020-26712

REDCap 10.3.4 contains a SQL injection vulnerability in the ToDoList function via sort parameter. The application uses the addition of a string of information from the submitted user that is not valid ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：93 | 回复：0
CVE-2020-26713

REDCap 10.3.4 contains a XSS vulnerability in the ToDoList function with parameter sort. The information submitted by the user is immediately returned in the response and not escaped leading to the re ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：88 | 回复：0
CVE-2020-35458

An issue was discovered in ClusterLabs Hawk 2.x through 2.3.0-x. There is a Ruby shell code injection issue via the hawk_remember_me_id parameter in the login_from_cookie cookie. The user logout routi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：77 | 回复：0
CVE-2020-35459

An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able to call crm history (when crm is run) were able to execute commands via shell code injection to the crm history command ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：85 | 回复：0
CVE-2020-4673

IBM Workload Automation 9.5 stores sensitive information in HTML comments that could aid in further attacks against the system. IBM X-Force ID: 186286.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：80 | 回复：0
CVE-2020-4674

IBM Workload Automation 9.5 stores the server path in URLs that could aid in further attacks against the system. IBM X-Force ID: 186287.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：94 | 回复：0
CVE-2020-4838

IBM API Connect 5.0.0.0 through 5.0.8.10 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended funct ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：98 | 回复：0
CVE-2021-21445

SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, 2011, allows an authenticated attacker to include invalidated data in the HTTP response Content Type header, due to improper input validation, an ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：83 | 回复：0
CVE-2021-21446

SAP NetWeaver AS ABAP, versions 740, 750, 751, 752, 753, 754, 755, allows an unauthenticated attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service, ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：88 | 回复：0
CVE-2021-21447

SAP BusinessObjects Business Intelligence platform, versions 410, 420, allows an authenticated attacker to inject malicious JavaScript payload into the custom value input field of an Input Control, wh ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:39 | 阅读：88 | 回复：0