漏洞 - 第520页-OGeek|极客世界-中国程序员成长平台

OGeek|极客世界-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2021-37093

There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers steal short messages.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：34 | 回复：0
CVE漏洞

CVE-2021-37092

There is a Incomplete Cleanup vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：35 | 回复：0
CVE漏洞

CVE-2021-37075

There is a Credentials Management Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to confidentiality affected.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：30 | 回复：0
CVE漏洞

CVE-2021-37074

There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the user root privilege escalation.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：22 | 回复：0
CVE漏洞

CVE-2021-37069

There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：20 | 回复：0
CVE漏洞

CVE-2021-37054

There is an Identity spoofing and authentication bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：25 | 回复：0
CVE漏洞

CVE-2021-37053

There is a Service logic vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：24 | 回复：0
CVE漏洞

CVE-2021-37052

There is an Exception log vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause address information leakage.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：19 | 回复：0
CVE漏洞

CVE-2021-37051

There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds memory access.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：18 | 回复：0
CVE漏洞

CVE-2021-37050

There is a Missing sensitive data encryption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：43 | 回复：0
CVE漏洞

CVE-2021-37049

There is a Heap-based buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may rewrite the memory of adjacent objects.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：19 | 回复：0
CVE漏洞

CVE-2021-37045

There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart unexpectedly and the kernel-mode code to be executed.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：13 | 回复：0
CVE漏洞

CVE-2021-37044

There is a Permission control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：20 | 回复：0
CVE漏洞

CVE-2021-37040

There is a Parameter injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause privilege escalation of files after CIFS share mounting.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：23 | 回复：0
CVE漏洞

CVE-2021-37039

There is an Input verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause Bluetooth DoS.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：19 | 回复：0
CVE漏洞

CVE-2021-37037

There is an Invalid address access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：21 | 回复：0
CVE漏洞

CVE-2021-25527

Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：9 | 回复：0
CVE漏洞

CVE-2021-25526

Intent redirection vulnerability in Samsung Blockchain Wallet prior to version 1.3.02.8 allows attacker to execute privileged action.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：7 | 回复：0
CVE漏洞

CVE-2021-25525

Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior to version 4.0.65 allows attacker to use NFC without user recognition.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：12 | 回复：0
CVE漏洞

CVE-2021-25524

Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：6 | 回复：0
CVE漏洞

CVE-2021-25523

Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：12 | 回复：0
CVE漏洞

CVE-2021-25522

Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：12 | 回复：0
CVE漏洞

CVE-2021-25521

Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：19 | 回复：0
CVE漏洞

CVE-2021-25520

Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：5 | 回复：0
CVE漏洞

CVE-2021-25519

An improper access control vulnerability in CPLC prior to SMR Dec-2021 Release 1 allows local attackers to access CPLC information without permission.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：22 | 回复：0
CVE漏洞

CVE-2021-25518

An improper boundary check in secure_log of LDFW and BL31 prior to SMR Dec-2021 Release 1 allows arbitrary memory write and code execution.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：7 | 回复：0
CVE漏洞

CVE-2021-25517

An improper input validation vulnerability in LDFW prior to SMR Dec-2021 Release 1 allows attackers to perform arbitrary code execution.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：8 | 回复：0
CVE漏洞

CVE-2021-25516

An improper check or handling of exceptional conditions in Exynos baseband prior to SMR Dec-2021 Release 1 allows attackers to track locations.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：8 | 回复：0
CVE漏洞

CVE-2021-25515

An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows attackers to access BSSID.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：5 | 回复：0
CVE漏洞

CVE-2021-25514

An improper intent redirection handling in Tags prior to SMR Dec-2021 Release 1 allows attackers to access sensitive information.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：7 | 回复：0
CVE漏洞

CVE-2021-25513

An improper privilege management vulnerability in Apps Edge application prior to SMR Dec-2021 Release 1 allows unauthorized access to some device data on the lockscreen.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：9 | 回复：0
CVE漏洞

CVE-2021-25512

An improper validation vulnerability in telephony prior to SMR Dec-2021 Release 1 allows attackers to launch certain activities.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-25511

An improper validation vulnerability in FilterProvider prior to SMR Dec-2021 Release 1 allows attackers to write arbitrary files via a path traversal vulnerability.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：10 | 回复：0
CVE漏洞

CVE-2021-25510

An improper validation vulnerability in FilterProvider prior to SMR Dec-2021 Release 1 allows local arbitrary code execution.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：5 | 回复：0
CVE漏洞

CVE-2021-43063

A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows at ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：29 | 回复：0
CVE漏洞

CVE-2021-36190

A unintended proxy or intermediary ('confused deputy') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows an unauthenticated attacker to access protected hosts via crafted H ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：6 | 回复：0
CVE漏洞

CVE-2021-43064

A url redirection to untrusted site ('open redirect') in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to use the device as a pro ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：7 | 回复：0
CVE漏洞

CVE-2021-41027

A stack-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, allows an authenticated attacker to execute unauthorized code or commands via crafted certificates loaded into the device.……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：11 | 回复：0
CVE漏洞

CVE-2021-41024

A relative path traversal vulnerabiltiy in FortiOS versions 7.0.0 and 7.0.1 and FortiProxy verison 7.0.0 may allow an unauthenticated, unauthorized attacker to inject path traversal character sequenc ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：16 | 回复：0
CVE漏洞

CVE-2021-41015

A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthorized co ...……

作者：菜鸟教程小白 | 时间：2022-2-5 12:35 | 阅读：11 | 回复：0