CVE-2025-20759 - Huawei Modem Out-of-Bounds Read Remote Denial of Service Vulnerability
CVE ID : CVE-2025-20759
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01673760; Issue ID: MSV-4650.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20759
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01673760; Issue ID: MSV-4650.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20763 - mmdvfs Out-of-Bounds Write Privilege Escalation
CVE ID : CVE-2025-20763
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In mmdvfs, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10267218; Issue ID: MSV-5032.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20763
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In mmdvfs, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10267218; Issue ID: MSV-5032.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20764 - Apache Struts Out-of-Bounds Write Vulnerability
CVE ID : CVE-2025-20764
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In smi, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10259774; Issue ID: MSV-5029.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20764
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In smi, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10259774; Issue ID: MSV-5029.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20765 - Apache EE Daemon Race Condition Denial of Service
CVE ID : CVE-2025-20765
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In aee daemon, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10190802; Issue ID: MSV-4833.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20765
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In aee daemon, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10190802; Issue ID: MSV-4833.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20766 - Adobe Acrobat Memory Corruption Privilege Escalation Vulnerability
CVE ID : CVE-2025-20766
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4820.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20766
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4820.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20767 - Apple Safari Out-of-Bounds Write Vulnerability
CVE ID : CVE-2025-20767
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4807.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20767
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4807.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20768 - Adobe Display Out-of-Bounds Read Vulnerability
CVE ID : CVE-2025-20768
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4805.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20768
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4805.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20769 - HP Display Out-of-Bounds Write Vulnerability
CVE ID : CVE-2025-20769
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4804.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20769
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4804.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20770 - IBM ThinkPad Display Use After Free Local Privilege Escalation Vulnerability
CVE ID : CVE-2025-20770
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4803.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20770
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4803.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20771 - Adobe Flash Escalation of Privilege Vulnerability
CVE ID : CVE-2025-20771
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible escalation of privilege due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4802.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20771
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible escalation of privilege due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4802.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20772 - Windows System Use-After-Free Local Privilege Escalation Vulnerability in Display
CVE ID : CVE-2025-20772
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4801.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20772
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4801.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20773 - Samsung Display Use After Free Local Privilege Escalation
CVE ID : CVE-2025-20773
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4797.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20773
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4797.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20774 - Apple Display Out of Bounds Write Local Privilege Escalation
CVE ID : CVE-2025-20774
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4796.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20774
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10196993; Issue ID: MSV-4796.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20775 - Microsoft Windows Display Use After Free Local Privilege Escalation
CVE ID : CVE-2025-20775
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4795.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20775
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4795.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20776 - Apple Display Out-of-Bounds Read Local Privilege Escalation Vulnerability
CVE ID : CVE-2025-20776
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184297; Issue ID: MSV-4759.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20776
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184297; Issue ID: MSV-4759.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20777 - Apple Display Out-of-Bounds Write Vulnerability
CVE ID : CVE-2025-20777
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184870; Issue ID: MSV-4752.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20777
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184870; Issue ID: MSV-4752.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20788 - NVIDIA GPU pdma Missing Permission Check Memory Corruption Denial of Service Vulnerability
CVE ID : CVE-2025-20788
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In GPU pdma, there is a possible memory corruption due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117735; Issue ID: MSV-4539.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20788
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In GPU pdma, there is a possible memory corruption due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117735; Issue ID: MSV-4539.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20789 - NVIDIA GPU pdma Missing Bounds Check Information Disclosure
CVE ID : CVE-2025-20789
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In GPU pdma, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117741; Issue ID: MSV-4538.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20789
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In GPU pdma, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117741; Issue ID: MSV-4538.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20790 - "Qualcomm Modem Rogue Base Station Denial of Service Vulnerability"
CVE ID : CVE-2025-20790
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01677581; Issue ID: MSV-4701.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20790
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01677581; Issue ID: MSV-4701.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20791 - "Ericsson Modem Remote Denial of Service Vulnerability"
CVE ID : CVE-2025-20791
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01661189; Issue ID: MSV-4298.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20791
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01661189; Issue ID: MSV-4298.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20792 - "Ericsson Modem Denial of Service Vulnerability"
CVE ID : CVE-2025-20792
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01717526; Issue ID: MSV-5591.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20792
Published : Dec. 2, 2025, 3:16 a.m. | 2 hours, 19 minutes ago
Description : In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01717526; Issue ID: MSV-5591.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...