Summary: Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43229, CVE-2021-43230. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43231 CVSS...
Summary: Windows NTFS Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-43229, CVE-2021-43230. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43231 CVSS...
Summary: An issue in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via false link event messages...
Summary: An issue in Atomix v3.1.5 allows a malicious Atomix node to remove states of ONOS storage via abuse of...
Summary: A vulnerability was discovered in the Keybase Client for Windows before version 5.6.0 when a user executed the "keybase...
Summary: Gradio is an open source framework for building interactive machine learning models and demos. In versions prior to 2.5.0...
Summary: IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ReadXPM_W+0x0000000000000531. Reference Links(if available): https://github.com/nhiephon/Research/blob/master/README.md https://www.irfanview.com/plugins.htm https://github.com/nhiephon/Research/blob/master/Irfanview/0x0000000000000531.MD CVSS Score...
Summary: In StackStorm versions prior to 3.6.0, the jinja interpreter was not run in sandbox mode and thus allows execution...
Summary: An issue was discovered in Listary through 6. An attacker can create a \\.\pipe\Listary.listaryService named pipe and wait for...
Summary: In pf_write_buf of FuseDaemon.cpp, there is possible memory corruption due to a race condition. This could lead to local...
Summary: In ResolverActivity, there is a possible user interaction bypass due to a tapjacking/overlay attack. This could lead to local...
Summary: Product: AndroidVersions: Android kernelAndroid ID: A-201537251References: N/A Reference Links(if available): https://source.android.com/security/bulletin/pixel/2021-12-01 CVSS Score (if available) v2: / MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N v3:...
Summary: In onCreate of UsbPermissionActivity.java, there is a possible way to grant an app access to USB without informed user...
Summary: In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c has an integer overflow that could lead to an out-of-bounds read in...
Summary: In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check,...
Summary: ModSecurity 3.x through 3.0.5 mishandles excessively nested JSON objects. Crafted JSON objects with nesting tens-of-thousands deep could result in...
Summary: A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS...
Summary: Product: AndroidVersions: Android kernelAndroid ID: A-201537251References: N/A Reference Links(if available): https://source.android.com/security/bulletin/pixel/2021-12-01 CVSS Score (if available) v2: / MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N v3:...
Summary: In onCreate of UsbPermissionActivity.java, there is a possible way to grant an app access to USB without informed user...
Summary: In libssh2 before 1.9.0, kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c has an integer overflow that could lead to an out-of-bounds read in...
Summary: In libssh2 v1.9.0 and earlier versions, the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check,...
Summary: In alac decoder, there is a possible out of bounds write due to an incorrect bounds check. This could...
Summary: In onCreate of AllowBindAppWidgetActivity.java, there is a possible bypass of user interaction requirements due to unclear UI. This could...
Summary: In ActivityThread.java, there is a possible way to collide the content provider's authorities. This could lead to local escalation...
