Total
10481 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-20761 | 2 Google, Mediatek | 42 Android, Mt6739, Mt6761 and 39 more | 2023-07-10 | N/A | 6.7 MEDIUM |
| In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628604; Issue ID: ALPS07628582. | |||||
| CVE-2023-20766 | 2 Google, Mediatek | 53 Android, Mt6580, Mt6735 and 50 more | 2023-07-10 | N/A | 6.7 MEDIUM |
| In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573237; Issue ID: ALPS07573202. | |||||
| CVE-2023-20767 | 2 Google, Mediatek | 10 Android, Mt6879, Mt6886 and 7 more | 2023-07-10 | N/A | 6.7 MEDIUM |
| In pqframework, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629585; Issue ID: ALPS07629584. | |||||
| CVE-2023-20757 | 2 Google, Mediatek | 17 Android, Mt6739, Mt6768 and 14 more | 2023-07-10 | N/A | 6.7 MEDIUM |
| In cmdq, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07636133; Issue ID: ALPS07636133. | |||||
| CVE-2023-20758 | 2 Google, Mediatek | 18 Android, Mt6739, Mt6768 and 15 more | 2023-07-10 | N/A | 4.4 MEDIUM |
| In cmdq, there is a possible memory corruption due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07636133; Issue ID: ALPS07636130. | |||||
| CVE-2023-20759 | 2 Google, Mediatek | 18 Android, Mt6739, Mt6768 and 15 more | 2023-07-10 | N/A | 4.4 MEDIUM |
| In cmdq, there is a possible memory corruption due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07636133; Issue ID: ALPS07634601. | |||||
| CVE-2023-20760 | 2 Google, Mediatek | 5 Android, Mt6879, Mt6895 and 2 more | 2023-07-10 | N/A | 6.7 MEDIUM |
| In apu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629578; Issue ID: ALPS07629578. | |||||
| CVE-2023-20754 | 2 Google, Mediatek | 55 Android, Mt6580, Mt6731 and 52 more | 2023-07-07 | N/A | 6.7 MEDIUM |
| In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07563028; Issue ID: ALPS07588343. | |||||
| CVE-2023-20753 | 2 Google, Mediatek | 55 Android, Mt6580, Mt6731 and 52 more | 2023-07-07 | N/A | 6.7 MEDIUM |
| In rpmb, there is a possible out of bounds write due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07460390; Issue ID: ALPS07588667. | |||||
| CVE-2021-3567 | 1 Gnome | 1 Caribou | 2023-07-07 | 5.0 MEDIUM | 7.5 HIGH |
| A flaw was found in Caribou due to a regression of CVE-2020-25712 fix. An attacker could use this flaw to bypass screen-locking applications that leverage Caribou as an input mechanism. The highest threat from this vulnerability is to system availability. | |||||
| CVE-2023-35177 | 1 Hp | 76 Laserjet Pro M304-m305 W1a46a, Laserjet Pro M304-m305 W1a46a Firmware, Laserjet Pro M304-m305 W1a47a and 73 more | 2023-07-07 | N/A | 8.8 HIGH |
| Certain HP LaserJet Pro print products are potentially vulnerable to a stack-based buffer overflow related to the compact font format parser. | |||||
| CVE-2023-26085 | 1 Arm | 1 Nn Android Neural Networks Driver | 2023-07-07 | N/A | 7.8 HIGH |
| A possible out-of-bounds read and write (due to an improper length check of shared memory) was discovered in Arm NN Android-NN-Driver before 23.02. | |||||
| CVE-2023-21517 | 1 Samsung | 1 Exynos | 2023-07-07 | N/A | 9.8 CRITICAL |
| Heap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code. | |||||
| CVE-2023-34924 | 1 H3c | 2 Magic B1stw, Magic B1stw Firmware | 2023-07-07 | N/A | 7.5 HIGH |
| H3C Magic B1STW B1STV100R012 was discovered to contain a stack overflow via the function SetAPInfoById. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted POST request. | |||||
| CVE-2021-40014 | 1 Huawei | 1 Harmonyos | 2023-07-06 | 5.0 MEDIUM | 7.5 HIGH |
| The bone voice ID trusted application (TA) has a heap overflow vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. | |||||
| CVE-2023-21222 | 1 Google | 1 Android | 2023-07-06 | N/A | 6.7 MEDIUM |
| In load_dt_data of storage.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-266977723References: N/A | |||||
| CVE-2023-21236 | 1 Google | 1 Android | 2023-07-06 | N/A | 6.7 MEDIUM |
| In aoc_service_set_read_blocked of aoc.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-270148537References: N/A | |||||
| CVE-2023-21161 | 1 Google | 1 Android | 2023-07-06 | N/A | 6.7 MEDIUM |
| In Parse of simdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-263783702References: N/A | |||||
| CVE-2023-21159 | 1 Google | 1 Android | 2023-07-05 | N/A | 6.7 MEDIUM |
| In Parse of simdata.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-263783565References: N/A | |||||
| CVE-2023-34928 | 1 H3c | 2 Magic B1st, Magic B1st Firmware | 2023-07-05 | N/A | 7.5 HIGH |
| A stack overflow in the Edit_BasicSSID function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request. | |||||