Vulnerabilidades CVE
Base de dados CVE enriquecida com CISA KEV e NVD
| CVE ID | CVSS | Severidade | KEV | Avistamentos |
|---|---|---|---|---|
| CVE-2021-39624 In PackageManager, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not... | 5.5 | MEDIUM | — | 0 |
| CVE-2022-22605 An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 13.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary cod... | 7.8 | HIGH | — | 0 |
| CVE-2021-39667 In ih264d_parse_decode_slice of ih264d_parse_slice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional executi... | 6.5 | MEDIUM | — | 0 |
| CVE-2021-39685 In various setup methods of the USB gadget subsystem, there is a possible out of bounds write due to an incorrect flag check. This could lead to local escalation of privilege with no additional execut... | 7.8 | HIGH | — | 0 |
| CVE-2021-39686 In several functions of binder.c, there is a possible way to represent the wrong domain to SELinux due to a race condition. This could lead to local escalation of privilege with no additional executio... | 7.0 | HIGH | — | 0 |
| CVE-2021-39689 In multiple functions of odsign_main.cpp, there is a possible way to persist system attack due to a logic error in the code. This could lead to local escalation of privilege with System execution priv... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39690 In setDisplayPadding of WallpaperManagerService.java, there is a possible way to cause a persistent DoS due to improper input validation. This could lead to local denial of service with no additional ... | 5.5 | MEDIUM | — | 0 |
| CVE-2021-39692 In onCreate of SetupLayoutActivity.java, there is a possible way to setup a work profile bypassing user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege wit... | 7.8 | HIGH | — | 0 |
| CVE-2021-39693 In onUidStateChanged of AppOpsService.java, there is a possible way to access location without a visible indicator due to a logic error in the code. This could lead to local escalation of privilege wi... | 7.8 | HIGH | — | 0 |
| CVE-2024-13417 Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the device is restarted, it gets back to fully working state. 2N has released an updated version 2.46 of... | 4.6 | MEDIUM | — | 0 |
| CVE-2021-39697 In checkFileUriDestination of DownloadProvider.java, there is a possible way to bypass external storage private directories protection due to a missing permission check. This could lead to local escal... | 7.8 | HIGH | — | 0 |
| CVE-2021-39698 In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User... | 7.8 | HIGH | — | 0 |
| CVE-2021-39701 In serviceConnection of ControlsProviderLifecycleManager.kt, there is a possible way to keep service running in foreground without notification or permission due to improper input validation. This cou... | 7.8 | HIGH | — | 0 |
| CVE-2021-39702 In onCreate of RequestManageCredentials.java, there is a possible way for a third party app to install certificates without user approval due to a tapjacking/overlay attack. This could lead to local e... | 7.8 | HIGH | — | 0 |
| CVE-2021-39703 In updateState of UsbDeviceManager.java, there is a possible unauthorized access of files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privil... | 7.8 | HIGH | — | 0 |
| CVE-2021-39704 In deleteNotificationChannelGroup of NotificationManagerService.java, there is a possible way to run foreground service without user notification due to a permissions bypass. This could lead to local ... | 7.8 | HIGH | — | 0 |
| CVE-2021-39706 In onResume of CredentialStorage.java, there is a possible way to cleanup content of credentials storage due to a missing permission check. This could lead to local escalation of privilege with no add... | 7.8 | HIGH | — | 0 |
| CVE-2021-39707 In onReceive of AppRestrictionsFragment.java, there is a possible way to start a phone call without permissions due to a confused deputy. This could lead to local escalation of privilege with no addit... | 7.8 | HIGH | — | 0 |
| CVE-2021-39708 In gatt_process_notification of gatt_cl.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution pri... | 9.8 | CRITICAL | — | 0 |
| CVE-2021-39709 In sendSipAccountsRemovedNotification of SipAccountRegistry.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execu... | 7.8 | HIGH | — | 0 |
| CVE-2021-39710 Product: AndroidVersions: Android kernelAndroid ID: A-202160245References: N/A | 9.8 | CRITICAL | — | 0 |
| CVE-2021-39711 In bpf_prog_test_run_skb of test_run.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. Use... | 4.4 | MEDIUM | — | 0 |
| CVE-2021-39712 In TBD of TBD, there is a possible user after free vulnerability due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is ... | 6.4 | MEDIUM | — | 0 |
| CVE-2021-39713 Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel | 7.0 | HIGH | — | 0 |
| CVE-2022-22606 An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Xcode 13.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary cod... | 7.8 | HIGH | — | 0 |
| CVE-2021-39715 In __show_regs of process.c, there is a possible leak of kernel memory and addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges... | 4.4 | MEDIUM | — | 0 |
| CVE-2021-39716 Product: AndroidVersions: Android kernelAndroid ID: A-206977562References: N/A | 7.5 | HIGH | — | 0 |
| CVE-2021-39717 In iaxxx_btp_write_words of iaxxx-btp.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges neede... | 4.4 | MEDIUM | — | 0 |
| CVE-2021-39718 In ProtocolStkProactiveCommandAdapter::Init of protocolstkadapter.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with S... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39719 In lwis_top_register_io of lwis_device_top.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges need... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39720 Product: AndroidVersions: Android kernelAndroid ID: A-207433926References: N/A | 9.8 | CRITICAL | — | 0 |
| CVE-2021-39721 In TBD of TBD, there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not neede... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39722 In ProtocolStkProactiveCommandAdapter::Init of protocolstkadapter.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with Sys... | 4.4 | MEDIUM | — | 0 |
| CVE-2021-39723 Product: AndroidVersions: Android kernelAndroid ID: A-209014813References: N/A | 9.8 | CRITICAL | — | 0 |
| CVE-2021-39724 In TuningProviderBase::GetTuningTreeSet of tuning_provider_base.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System ex... | 4.4 | MEDIUM | — | 0 |
| CVE-2021-39725 In gasket_free_coherent_memory_all of gasket_page_table.c, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with System execution privileges... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39726 In cd_ParseMsg of cd_codec.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. ... | 7.5 | HIGH | — | 0 |
| CVE-2021-39727 In eicPresentationRetrieveEntryValue of acropora/app/identity/libeic/EicPresentation.c, there is a possible information disclosure due to a race condition. This could lead to local information disclos... | 4.1 | MEDIUM | — | 0 |
| CVE-2021-39729 In the TitanM chip, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39730 In TBD of TBD, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not ne... | 4.4 | MEDIUM | — | 0 |
| CVE-2021-39731 In ProtocolStkProactiveCommandAdapter::Init of protocolstkadapter.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with S... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39732 In copy_io_entries of lwis_ioctl.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed.... | 7.8 | HIGH | — | 0 |
| CVE-2021-39733 In amcs_cdev_unlocked_ioctl of audiometrics.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileg... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39734 In sendMessage of OneToOneChatImpl.java (? TBD), there is a possible way to send an RCS message without permissions due to a missing permission check. This could lead to local escalation of privilege ... | 7.8 | HIGH | — | 0 |
| CVE-2021-39735 In gasket_alloc_coherent_memory of gasket_page_table.c, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges... | 6.4 | MEDIUM | — | 0 |
| CVE-2021-39736 In prepare_io_entry and prepare_response of lwis_ioctl.c and lwis_periodic_io.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege wi... | 6.7 | MEDIUM | — | 0 |
| CVE-2021-39737 Product: AndroidVersions: Android kernelAndroid ID: A-208229524References: N/A | 9.8 | CRITICAL | — | 0 |
| CVE-2021-39792 In usb_gadget_giveback_request of core.c, there is a possible use after free out of bounds read due to a race condition. This could lead to local information disclosure with System execution privilege... | 4.1 | MEDIUM | — | 0 |
| CVE-2021-40734 Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability when parsing a SVG file, potentially resulting in arbitrary code execution in the context of the current user... | N/A | NONE | — | 0 |
| CVE-2021-40735 Adobe Audition version 14.4 (and earlier) is affected by a memory corruption vulnerability, potentially resulting in arbitrary code execution in the context of the current user. User interaction is re... | N/A | NONE | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.