CVE-2021-40039
Summary: There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may...
Vulnerabilities
CVE-2021-40038
Summary: There is a Double free vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect...
CVE-2021-39978
Summary: Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerability may cause privacy and security issues. Reference Links(if...
CVE-2021-39970
Summary: HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this vulnerability may create any file with the system app...
CVE-2021-30293
Summary: Possible assertion due to lack of input validation in PUSCH configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon...
CVE-2021-30298
Summary: Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching...
CVE-2021-30303
Summary: Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto,...
CVE-2021-20873
Summary: Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme....
CVE-2021-30335
Summary: Possible assertion in QOS request due to improper validation when multiple add or update request are received simultaneously in...
CVE-2021-42392 – H2 Database Engine / H2 database – RCE
Summary: CVE-2021-42392 is a remote code execution (RCE) vulnerability impacting H2 database versions 1.1.100 through 2.0.204. A proof of concept...
CVE-2021-20167
Summary: Netgear RAX43 version 1.0.3.96 contains a command injection vulnerability. The readycloud cgi application is vulnerable to command injection in...
CVE-2021-24786
Summary: The Download Monitor WordPress plugin before 4.4.5 does not properly validate and escape the "orderby" GET parameter before using...
CVE-2020-11263
Summary: An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute,...
CVE-2021-45885
Summary: An issue was discovered in Stormshield Network Security (SNS) 4.2.2 through 4.2.7 (fixed in 4.2.8). Under a specific update-migration...
CVE-2021-45485
Summary: In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use...
CVE-2021-45485
Summary: In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use...
CVE-2022-21661 – WordPress / WordPress – SQLi
Summary: CVE-2022-21661 is a structured query language injection (SQLi) vulnerability impacting WordPress versions 5.7.5 and earlier. A proof of concept...
CVE-2021-33017
Summary: The standard access path of the IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) requires authentication, but the...
CVE-2021-45647
Summary: Certain NETGEAR devices are affected by disclosure of sensitive information. This affects EAX80 before 1.0.1.62, EX7000 before 1.0.1.104, R6120...
CVE-2021-32993
Summary: IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) contains hard-coded credentials, such as a password or a cryptographic...
CVE-2021-44161
Summary: Changing MOTP (Mobile One Time Password) system’s specific function parameter has insufficient validation for user input. A attacker in...
CVE-2021-44160
Summary: Carinal Tien Hospital Health Report System’s login page has improper authentication, a remote attacker can acquire another general user’s...
CVE-2021-4181
Summary: Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet...
CVE-2021-4181
Summary: Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet...
