Vulnerabilites CVE
Base de donnees CVE enrichie avec CISA KEV et NVD
| CVE ID | CVSS | Severite | KEV | Observations |
|---|---|---|---|---|
| CVE-2023-38463 In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges | 5.5 | MEDIUM | — | 0 |
| CVE-2023-46203 Missing Authorization vulnerability in JustCoded / Alex Prokopenko Just Custom Fields allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Just Custom Fields: fro... | 4.3 | MEDIUM | — | 0 |
| CVE-2023-38464 In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges | 7.8 | HIGH | — | 0 |
| CVE-2023-38465 In ims service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges | 5.5 | MEDIUM | — | 0 |
| CVE-2023-38466 In ims service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges | 5.5 | MEDIUM | — | 0 |
| CVE-2023-38467 In urild service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed | 4.4 | MEDIUM | — | 0 |
| CVE-2023-32808 In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System exe... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-38468 In urild service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed | 4.4 | MEDIUM | — | 0 |
| CVE-2023-38553 In gnss service, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed | 6.7 | MEDIUM | — | 0 |
| CVE-2023-38554 In wcn bsp driver, there is a possible out of bounds write due to a missing bounds check.This could lead to local denial of service with no additional execution privileges | 5.5 | MEDIUM | — | 0 |
| CVE-2023-20820 In wlan service, there is a possible command injection due to improper input validation. This could lead to remote code execution with System execution privileges needed. User interaction is not neede... | 7.2 | HIGH | — | 0 |
| CVE-2023-20821 In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not neede... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20822 In netdagent, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not n... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20823 In cmdq, there is a possible out of bounds read due to an incorrect status check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-20824 In duraspeed, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privilege needed. User interact... | 5.5 | MEDIUM | — | 0 |
| CVE-2023-26566 Sangoma FreePBX 1805 through 2203 on Linux contains hardcoded credentials for the Asterisk REST Interface (ARI), which allows remote attackers to reconfigure Asterisk and make external and internal ca... | 8.6 | HIGH | — | 0 |
| CVE-2023-20825 In duraspeed, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privilege needed. User interact... | 5.5 | MEDIUM | — | 0 |
| CVE-2023-20826 In cta, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privilege needed. User interaction is... | 5.5 | MEDIUM | — | 0 |
| CVE-2023-20827 In ims service, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ... | 6.4 | MEDIUM | — | 0 |
| CVE-2023-20828 In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20829 In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20830 In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20831 In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20832 In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20833 In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is no... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-20834 In pda, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit... | 6.4 | MEDIUM | — | 0 |
| CVE-2023-32805 In power, there is a possible out of bounds write due to an insecure default value. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-20835 In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for expl... | 6.4 | MEDIUM | — | 0 |
| CVE-2023-20836 In camsys, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-20837 In seninf, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20838 In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for explo... | 4.0 | MEDIUM | — | 0 |
| CVE-2023-32806 In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is ... | 6.7 | MEDIUM | — | 0 |
| CVE-2023-20839 In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is ne... | 4.2 | MEDIUM | — | 0 |
| CVE-2023-20840 In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User intera... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-20841 In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is ... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-20842 In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interactio... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-6950 An Improper Input Validation vulnerability affecting the FTP service running on the DJI Mavic Mini 3 Pro could allow an attacker to craft a malicious packet containing a malformed path provided to the... | 3.0 | LOW | — | 0 |
| CVE-2023-20843 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction ... | 4.2 | MEDIUM | — | 0 |
| CVE-2023-20844 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction ... | 4.2 | MEDIUM | — | 0 |
| CVE-2023-20845 In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is ne... | 4.2 | MEDIUM | — | 0 |
| CVE-2023-20846 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction ... | 4.2 | MEDIUM | — | 0 |
| CVE-2023-32807 In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is n... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-20847 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of service with System execution privileges needed. User interaction is ne... | 4.2 | MEDIUM | — | 0 |
| CVE-2023-20848 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-20849 In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is ... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-20850 In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interactio... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-37526 HCL DRYiCE Lucy (now AEX) is affected by a Cross Origin Resource Sharing (CORS) vulnerability. The mobile app is vulnerable to a CORS misconfiguration which could potentially allow unauthorized access... | 6.5 | MEDIUM | — | 0 |
| CVE-2023-32809 In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System exe... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-32810 In bluetooth driver, there is a possible out of bounds read due to improper input validation. This could lead to local information leak with System execution privileges needed. User interaction is not... | 4.4 | MEDIUM | — | 0 |
| CVE-2023-32811 In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User ... | 6.7 | MEDIUM | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.