Filtered by CWE-20
Total 11821 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-21656 1 Qualcomm 256 Ar8035, Ar8035 Firmware, Csra6620 and 253 more 2024-08-02 7.8 High
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
CVE-2023-21685 1 Microsoft 21 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 18 more 2024-08-02 8.8 High
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-21631 1 Qualcomm 320 205, 205 Firmware, 215 and 317 more 2024-08-02 7.5 High
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
CVE-2023-21647 1 Qualcomm 86 Qca6390, Qca6390 Firmware, Qca6391 and 83 more 2024-08-02 6.5 Medium
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
CVE-2023-21671 1 Qualcomm 48 Fastconnect 6700, Fastconnect 6700 Firmware, Fastconnect 6900 and 45 more 2024-08-02 9.3 Critical
Memory Corruption in Core during syscall for Sectools Fuse comparison feature.
CVE-2023-21657 1 Qualcomm 252 Csra6620, Csra6620 Firmware, Csra6640 and 249 more 2024-08-02 7.8 High
Memoru corruption in Audio when ADSP sends input during record use case.
CVE-2023-21515 1 Samsung 1 Galaxy Store 2024-08-02 7.5 High
InstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.
CVE-2023-21627 1 Qualcomm 96 Aqt1000, Aqt1000 Firmware, Qca6390 and 93 more 2024-08-02 6.7 Medium
Memory corruption in Trusted Execution Environment while calling service API with invalid address.
CVE-2023-21621 2 Adobe, Microsoft 2 Framemaker, Windows 2024-08-02 7.8 High
FrameMaker 2020 Update 4 (and earlier), 2022 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2023-21540 1 Microsoft 13 Windows 10 1809, Windows 10 20h2, Windows 10 20h2 and 10 more 2024-08-02 5.5 Medium
Windows Cryptographic Information Disclosure Vulnerability
CVE-2023-21607 3 Adobe, Apple, Microsoft 6 Acrobat, Acrobat Dc, Acrobat Reader and 3 more 2024-08-02 7.8 High
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2023-21596 3 Adobe, Apple, Microsoft 3 Incopy, Macos, Windows 2024-08-02 7.8 High
Adobe InCopy versions 18.0 (and earlier), 17.4 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2023-21514 1 Samsung 1 Galaxy Store 2024-08-02 7.5 High
Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.
CVE-2023-21574 3 Adobe, Apple, Microsoft 3 Photoshop, Macos, Windows 2024-08-02 7.8 High
Photoshop version 23.5.3 (and earlier), 24.1 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2023-21554 1 Microsoft 21 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 18 more 2024-08-02 9.8 Critical
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2023-21498 1 Samsung 1 Android 2024-08-02 6 Medium
Improper input validation vulnerability in setPartnerTAInfo in mPOS TUI trustlet prior to SMR May-2023 Release 1 allows local attackers to overwrite the trustlet memory.
CVE-2023-21588 3 Adobe, Apple, Microsoft 3 Indesign, Macos, Windows 2024-08-02 7.8 High
Adobe InDesign version 18.0 (and earlier), 17.4 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2023-21504 1 Samsung 1 Android 2024-08-02 5.6 Medium
Potential buffer overflow vulnerability in mm_Plmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.
CVE-2023-21503 1 Samsung 2 Android, Exynos 2024-08-02 5.6 Medium
Potential buffer overflow vulnerability in mm_LteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access.
CVE-2023-21516 1 Samsung 1 Galaxy Store 2024-08-02 7.5 High
XSS vulnerability from InstantPlay in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.