Search Results (363434 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-21469 1 Qualcomm 450 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 447 more 2024-11-21 7.3 High
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
CVE-2024-21466 1 Qualcomm 128 Fastconnect 7800, Fastconnect 7800 Firmware, Immersive Home 3210 Platform and 125 more 2024-11-21 6.5 Medium
Information disclosure while parsing sub-IE length during new IE generation.
CVE-2024-21465 1 Qualcomm 518 9205 Lte Modem, 9205 Lte Modem Firmware, Aqt1000 and 515 more 2024-11-21 7.8 High
Memory corruption while processing key blob passed by the user.
CVE-2024-21462 1 Qualcomm 622 315 5g Iot Modem, 315 5g Iot Modem Firmware, 9205 Lte Modem and 619 more 2024-11-21 7.1 High
Transient DOS while loading the TA ELF file.
CVE-2024-21461 1 Qualcomm 630 215 Mobile Platform, 215 Mobile Platform Firmware, 315 5g Iot Modem and 627 more 2024-11-21 8.4 High
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
CVE-2024-21460 1 Qualcomm 30 Fastconnect 6900, Fastconnect 6900 Firmware, Fastconnect 7800 and 27 more 2024-11-21 7.1 High
Information disclosure when ASLR relocates the IMEM and Secure DDR portions as one chunk in virtual address space.
CVE-2024-21458 1 Qualcomm 222 Ar8035, Ar8035 Firmware, Csr8811 and 219 more 2024-11-21 6.5 Medium
Information disclosure while handling SA query action frame.
CVE-2024-21457 1 Qualcomm 222 Ar8035, Ar8035 Firmware, Csr8811 and 219 more 2024-11-21 6.5 Medium
INformation disclosure while handling Multi-link IE in beacon frame.
CVE-2024-21456 1 Qualcomm 84 Ar8035, Ar8035 Firmware, Fastconnect 7800 and 81 more 2024-11-21 6.5 Medium
Information Disclosure while parsing beacon frame in STA.
CVE-2024-21184 1 Oracle 1 Database Server 2024-11-21 7.2 High
Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19.3-19.23. Easily exploitable vulnerability allows high privileged attacker having Execute on SYS.XS_DIAG privilege with network access via Oracle Net to compromise Oracle Database RDBMS Security. Successful attacks of this vulnerability can result in takeover of Oracle Database RDBMS Security. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
CVE-2024-21030 1 Oracle 1 Complex Maintenance Repair And Overhaul 2024-11-21 6.1 Medium
Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite (component: LOV). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Complex Maintenance, Repair, and Overhaul. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Complex Maintenance, Repair, and Overhaul, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Complex Maintenance, Repair, and Overhaul accessible data as well as unauthorized read access to a subset of Oracle Complex Maintenance, Repair, and Overhaul accessible data. CVSS 3.1 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).
CVE-2024-20901 1 Samsung 1 Android 2024-11-21 5.9 Medium
Improper input validation in copying data to buffer cache in libsaped prior to SMR Jul-2024 Release 1 allows local attackers to write out-of-bounds memory.
CVE-2024-20900 1 Samsung 1 Android 2024-11-21 4 Medium
Improper authentication in MTP application prior to SMR Jul-2024 Release 1 allows local attackers to enter MTP mode without proper authentication.
CVE-2024-20899 1 Samsung 1 Android 2024-11-21 4 Medium
Use of implicit intent for sensitive communication in RCS function in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
CVE-2024-20898 1 Samsung 1 Android 2024-11-21 4 Medium
Use of implicit intent for sensitive communication in SoftphoneClient in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
CVE-2024-20897 1 Samsung 1 Android 2024-11-21 4 Medium
Use of implicit intent for sensitive communication in FCM function in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
CVE-2024-20896 1 Samsung 1 Android 2024-11-21 5.5 Medium
Use of implicit intent for sensitive communication in Configuration message prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information.
CVE-2024-20895 1 Samsung 1 Android 2024-11-21 7.7 High
Improper access control in Dar service prior to SMR Jul-2024 Release 1 allows local attackers to bypass restriction for calling SDP features.
CVE-2024-20894 1 Samsung 1 Android 2024-11-21 4.3 Medium
Improper handling of exceptional conditions in Secure Folder prior to SMR Jul-2024 Release 1 allows physical attackers to bypass authentication under certain condition. User interaction is required for triggering this vulnerability.
CVE-2024-20893 1 Samsung 1 Android 2024-11-21 6.1 Medium
Improper input validation in libmediaextractorservice.so prior to SMR Jul-2024 Release 1 allows local attackers to trigger memory corruption.