• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2021-36888
    CVE漏洞
    CVE-2021-36888
    Unauthenticated Arbitrary Options Update vulnerability leading to full website compromise discovered in Image Hover Effects Ultimate (versions = 9.6.1) WordPress plugin.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:42 | 回复:0
  • CVE-2021-1048
    CVE漏洞
    CVE-2021-1048
    In ep_loop_check_proc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:48 | 回复:0
  • CVE-2021-1047
    CVE漏洞
    CVE-2021-1047
    In valid_ipc_dram_addr of cm_access_control.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges neede ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:51 | 回复:0
  • CVE-2021-1046
    CVE漏洞
    CVE-2021-1046
    In lwis_dpm_update_clock of lwis_device_dpm.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:45 | 回复:0
  • CVE-2021-1045
    CVE漏洞
    CVE-2021-1045
    Product: AndroidVersions: Android kernelAndroid ID: A-195580473References: N/A……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:36 | 回复:0
  • CVE-2021-1044
    CVE漏洞
    CVE-2021-1044
    In eicOpsDecryptAes128Gcm of acropora/app/identity/identity_support.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:43 | 回复:0
  • CVE-2021-1043
    CVE漏洞
    CVE-2021-1043
    In TBD of TBD, there is a possible downgrade attack due to under utilized anti-rollback protections. This could lead to local information disclosure with no additional execution privileges needed. Use ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:56 | 回复:0
  • CVE-2021-1042
    CVE漏洞
    CVE-2021-1042
    In dsi_panel_debugfs_read_cmdset of dsi_panel.c, there is a possible disclosure of freed kernel heap memory due to a use after free. This could lead to local information disclosure with System executi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:30 | 回复:0
  • CVE-2021-1041
    CVE漏洞
    CVE-2021-1041
    In (TBD) of (TBD), there is a possible out of bounds read due to memory corruption. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:34 | 回复:0
  • CVE-2021-1040
    CVE漏洞
    CVE-2021-1040
    In onCreate of BluetoothPairingSelectionFragment.java, there is a possible EoP due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privile ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:33 | 回复:0
  • CVE-2021-1039
    CVE漏洞
    CVE-2021-1039
    In NotificationAccessActivity of AndroidManifest.xml, there is a possible EoP due to a tapjacking/overlay attack. This could lead to local escalation of privilege with no additional execution privileg ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:41 | 回复:0
  • CVE-2021-1038
    CVE漏洞
    CVE-2021-1038
    In UserDetailsActivity of AndroidManifest.xml, there is a possible DoS due to a tapjacking/overlay attack. This could lead to local denial of service with no additional execution privileges needed. Us ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:48 | 回复:0
  • CVE-2021-1034
    CVE漏洞
    CVE-2021-1034
    In getLine1NumberForDisplay of PhoneInterfaceManager.java, there is apossible way to determine whether an app is installed, without querypermissions due to a missing permission check. This could lead ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:39 | 回复:0
  • CVE-2021-1032
    CVE漏洞
    CVE-2021-1032
    In getMimeGroup of PackageManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:41 | 回复:0
  • CVE-2021-1031
    CVE漏洞
    CVE-2021-1031
    In cancelNotificationsFromListener of NotificationManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disc ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:30 | 回复:0
  • CVE-2021-1030
    CVE漏洞
    CVE-2021-1030
    In setNotificationsShownFromListener of NotificationManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information di ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:39 | 回复:0
  • CVE-2021-1029
    CVE漏洞
    CVE-2021-1029
    In setClientStateLocked of SurfaceFlinger.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:32 | 回复:0
  • CVE-2021-1028
    CVE漏洞
    CVE-2021-1028
    In setClientStateLocked of SurfaceFlinger.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:34 | 回复:0
  • CVE-2021-1027
    CVE漏洞
    CVE-2021-1027
    In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a privileged process due to improper casting. This could lead to local escalation of privilege with no additiona ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:33 | 回复:0
  • CVE-2021-1026
    CVE漏洞
    CVE-2021-1026
    In startRanging of RttServiceImpl.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to loca ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:39 | 回复:0
  • CVE-2021-1025
    CVE漏洞
    CVE-2021-1025
    In hasNamedWallpaper of WallpaperManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This could lead to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:29 | 回复:0
  • CVE-2021-1024
    CVE漏洞
    CVE-2021-1024
    In onEventReceived of EventResultPersister.java, there is a possible intent redirection due to a confused deputy. This could lead to local escalation of privilege with System execution privileges need ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:33 | 回复:0
  • CVE-2021-1023
    CVE漏洞
    CVE-2021-1023
    In onCreate of RequestIgnoreBatteryOptimizations.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This cou ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:31 | 回复:0
  • CVE-2021-1022
    CVE漏洞
    CVE-2021-1022
    In btif_in_hf_client_generic_evt of btif_hf_client.cc, there is a possible Bluetooth service crash due to a missing null check. This could lead to remote denial of service with no additional execution ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:27 | 回复:0
  • CVE-2021-1021
    CVE漏洞
    CVE-2021-1021
    In snoozeNotificationInt of NotificationManagerService.java, there is a possible way to disable notification for an arbitrary user due to improper input validation. This could lead to local escalation ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:34 | 回复:0
  • CVE-2021-1020
    CVE漏洞
    CVE-2021-1020
    In snoozeNotification of NotificationListenerService.java, there is a possible way to disable notification for an arbitrary user due to improper input validation. This could lead to local escalation o ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:34 | 回复:0
  • CVE-2021-1019
    CVE漏洞
    CVE-2021-1019
    In snoozeNotification of NotificationListenerService.java, there is a possible permission confusion due to a misleading user consent dialog. This could lead to local escalation of privilege with User ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:31 | 回复:0
  • CVE-2021-1018
    CVE漏洞
    CVE-2021-1018
    In adjustStreamVolume of AudioService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:32 | 回复:0
  • CVE-2021-1017
    CVE漏洞
    CVE-2021-1017
    In AdapterService and GattService definition of AndroidManifest.xml, there is a possible way to disable bluetooth connection due to a missing permission check. This could lead to local escalation of p ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:26 | 回复:0
  • CVE-2021-1016
    CVE漏洞
    CVE-2021-1016
    In onCreate of UsbPermissionActivity.java, there is a possible way to grant an app access to USB without informed user consent due to a tapjacking/overlay attack. This could lead to local escalation o ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:21 | 回复:0
  • CVE-2021-1015
    CVE漏洞
    CVE-2021-1015
    In getMeidForSlot of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lea ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:25 | 回复:0
  • CVE-2021-1014
    CVE漏洞
    CVE-2021-1014
    In getNetworkTypeForSubscriber of PhoneInterfaceManager.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. T ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:40 | 回复:0
  • CVE-2021-1013
    CVE漏洞
    CVE-2021-1013
    In checkExistsAndEnforceCannotModifyImmutablyRestrictedPermission of PermissionManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:37 | 回复:0
  • CVE-2021-1012
    CVE漏洞
    CVE-2021-1012
    In onResume of NotificationAccessDetails.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:30 | 回复:0
  • CVE-2021-1011
    CVE漏洞
    CVE-2021-1011
    In setPackageStoppedState of PackageManagerService.java, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User inter ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:31 | 回复:0
  • CVE-2021-1010
    CVE漏洞
    CVE-2021-1010
    In getSigningKeySet of PackageManagerService.java, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:34 | 回复:0
  • CVE-2021-1009
    CVE漏洞
    CVE-2021-1009
    In setApplicationCategoryHint of PackageManagerService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. Th ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:41 | 回复:0
  • CVE-2021-1008
    CVE漏洞
    CVE-2021-1008
    In addSubInfo of SubscriptionController.java, there is a possible way to force the user to make a factory reset due to a logic error in the code. This could lead to local denial of service with System ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:47 | 回复:0
  • CVE-2021-1007
    CVE漏洞
    CVE-2021-1007
    In btu_hcif_process_event of btu_hcif.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges need ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:38 | 回复:0
  • CVE-2021-1006
    CVE漏洞
    CVE-2021-1006
    In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System executi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:39 | 阅读:34 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap