Search Results (367120 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-27830 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27829 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27828 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in MediaMonitorEvent prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27827 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27826 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in SemSuspendDialogInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27825 1 Google 1 Android 2024-11-21 4 Medium
Improper size check in sapefd_parse_meta_HEADER function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.
CVE-2022-27824 1 Google 1 Android 2024-11-21 4 Medium
Improper size check of in sapefd_parse_meta_DESCRIPTION function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file
CVE-2022-27823 1 Google 1 Android 2024-11-21 4 Medium
Improper size check in sapefd_parse_meta_HEADER_old function of libsapeextractor library prior to SMR Apr-2022 Release 1 allows out of bounds read via a crafted media file.
CVE-2022-27822 1 Google 1 Android 2024-11-21 6.6 Medium
Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.
CVE-2022-27821 1 Google 1 Android 2024-11-21 4 Medium
Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image file.
CVE-2022-27820 1 Owasp 1 Zed Attack Proxy 2024-11-21 4.0 Medium
OWASP Zed Attack Proxy (ZAP) through w2022-03-21 does not verify the TLS certificate chain of an HTTPS server.
CVE-2022-27819 1 Waycrate 1 Swhkd 2024-11-21 5.3 Medium
SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service (memory exhaustion) upon an attempt to parse a large or infinite file (such as a block or character device).
CVE-2022-27818 1 Waycrate 1 Swhkd 2024-11-21 9.1 Critical
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service.
CVE-2022-27817 1 Waycrate 1 Swhkd 2024-11-21 4.4 Medium
SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality.
CVE-2022-27816 1 Waycrate 1 Swhkd 2024-11-21 7.1 High
SWHKD 1.1.5 unsafely uses the /tmp/swhks.pid pathname. There can be data loss or a denial of service.
CVE-2022-27815 1 Waycrate 1 Swhkd 2024-11-21 7.8 High
SWHKD 1.1.5 unsafely uses the /tmp/swhkd.pid pathname. There can be an information leak or denial of service.
CVE-2022-27814 1 Waycrate 1 Swhkd 2024-11-21 3.3 Low
SWHKD 1.1.5 allows arbitrary file-existence tests via the -c option.
CVE-2022-27813 1 Motorola 4 Mtm5400, Mtm5400 Firmware, Mtm5500 and 1 more 2024-11-21 8.1 High
Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to enforce the trust boundary between the two cores. Since both units are left unconfigured by the firmwares, an adversary with control over either core can trivially gain code execution on the other, by overwriting code located in shared RAM or DDR2 memory regions.
CVE-2022-27812 1 Stormshield 1 Stormshield Network Security 2024-11-21 7.5 High
Flooding SNS firewall versions 3.7.0 to 3.7.29, 3.11.0 to 3.11.17, 4.2.0 to 4.2.10, and 4.3.0 to 4.3.6 with specific forged traffic, can lead to SNS DoS.
CVE-2022-27811 1 Gnome 1 Ocrfeeder 2024-11-21 9.8 Critical
GNOME OCRFeeder before 0.8.4 allows OS command injection via shell metacharacters in a PDF or image filename.