Search Results (363500 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-27864 1 Autodesk 1 Design Review 2024-11-21 8.8 High
A Double Free vulnerability allows remote attackers to execute arbitrary code through DesignReview.exe application on PDF files within affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
CVE-2022-27861 1 Arscode 1 Ninja Popups 2024-11-21 4.7 Medium
Unauth. Open Redirect vulnerability in Arscode Ninja Popups plugin <= 4.7.5 versions.
CVE-2022-27852 1 Wpchill 1 Kb Support 2024-11-21 6.1 Medium
Multiple Unauthenticated Stored Cross-Site Scripting (XSS) vulnerabilities in KB Support (WordPress plugin) <= 1.5.5 versions.
CVE-2022-27843 1 Samsung 1 Kies 2024-11-21 6.2 Medium
DLL hijacking vulnerability in Kies prior to version 2.6.4.22014_2 allows attacker to execute abitrary code.
CVE-2022-27842 1 Samsung 1 Smart Switch Pc 2024-11-21 6.2 Medium
DLL hijacking vulnerability in Smart Switch PC prior to version 4.2.22022_4 allows attacker to execute abitrary code.
CVE-2022-27841 1 Samsung 1 Samsung Pass 2024-11-21 4.3 Medium
Improper exception handling in Samsung Pass prior to version 3.7.07.5 allows physical attacker to view the screen that is previously running without authentication
CVE-2022-27840 1 Samsung 1 Recovery 2024-11-21 4.4 Medium
Improper access control vulnerability in SamsungRecovery prior to version 8.1.43.0 allows local attckers to delete arbitrary files as SamsungRecovery permission.
CVE-2022-27839 1 Samsung 1 Internet 2024-11-21 3.3 Low
Improper authentication vulnerability in SecretMode in Samsung Internet prior to version 16.2.1 allows attackers to access bookmark tab without proper credentials.
CVE-2022-27838 1 Samsung 1 Factorycamera 2024-11-21 7.7 High
Improper access control vulnerability in FactoryCamera prior to version 2.1.96 allows attacker to access the file with system privilege.
CVE-2022-27837 2 Google, Samsung 2 Android, Accessibility 2024-11-21 4.4 Medium
A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R(11.0) and 13.0.1.1 in Android S(12.0) allows attacker to access the file with system privilege.
CVE-2022-27836 1 Google 1 Android 2024-11-21 8.4 High
Improper access control and path traversal vulnerability in Storage Manager and Storage Manager Service prior to SMR Apr-2022 Release 1 allow local attackers to access arbitrary system files without a proper permission. The patch adds proper validation logic to prevent arbitrary files access.
CVE-2022-27835 1 Google 1 Android 2024-11-21 7.6 High
Improper boundary check in UWB firmware prior to SMR Apr-2022 Release 1 allows arbitrary memory write.
CVE-2022-27834 2 Google, Samsung 4 Android, Exynos 2100, Exynos 980 and 1 more 2024-11-21 2.9 Low
Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-2022 Release 1 allows attackers to perform malicious actions.
CVE-2022-27833 2 Google, Samsung 4 Android, Exynos 2100, Exynos 980 and 1 more 2024-11-21 4.4 Medium
Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds write by integer overflow.
CVE-2022-27832 1 Google 1 Android 2024-11-21 4 Medium
Improper boundary check in media.extractor library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via a crafted media file.
CVE-2022-27831 1 Google 1 Android 2024-11-21 2.9 Low
Improper boundary check in sflvd_rdbuf_bits of libsflvextractor prior to SMR Apr-2022 Release 1 allows attackers to read out of bounds memory.
CVE-2022-27830 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in SemBlurInfo prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27829 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in VerifyCredentialResponse prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27828 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in MediaMonitorEvent prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.
CVE-2022-27827 1 Google 1 Android 2024-11-21 8.5 High
Improper validation vulnerability in MediaMonitorDimension prior to SMR Apr-2022 Release 1 allows attackers to launch certain activities.