βΌ CVE-2022-41586 βΌ
π Read
via "National Vulnerability Database".
The communication framework module has a vulnerability of not truncating data properly.Successful exploitation of this vulnerability may affect data confidentiality.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41582 βΌ
π Read
via "National Vulnerability Database".
The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-38980 βΌ
π Read
via "National Vulnerability Database".
The HwAirlink module has a heap overflow vulnerability in processing data packets of the proprietary protocol.Successful exploitation of this vulnerability may allow attackers to obtain process control permissions.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39011 βΌ
π Read
via "National Vulnerability Database".
The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module.π Read
via "National Vulnerability Database".
βΌ CVE-2021-0699 βΌ
π Read
via "National Vulnerability Database".
In HTBLogKM of TBD, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-242345178π Read
via "National Vulnerability Database".
βΌ CVE-2022-20464 βΌ
π Read
via "National Vulnerability Database".
In various functions of ap_input_processor.c, there is a possible way to record audio during a phone call due to a logic error in the code. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-236042696References: N/Aπ Read
via "National Vulnerability Database".
βΌ CVE-2022-41600 βΌ
π Read
via "National Vulnerability Database".
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-39065 βΌ
π Read
via "National Vulnerability Database".
A single malformed IEEE 802.15.4 (Zigbee) frame makes the TRΓβ¦DFRI gateway unresponsive, such that connected lighting cannot be controlled with the IKEA Home Smart app and TRΓβ¦DFRI remote control. The malformed Zigbee frame is an unauthenticated broadcast message, which means all vulnerable devices within radio range are affected. CVSS 3.1 Base Score: 6.5 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:Hπ Read
via "National Vulnerability Database".
βΌ CVE-2021-22685 βΌ
π Read
via "National Vulnerability Database".
An attacker may be able to use minify route with a relative path to view any file on the Cassia Networks Access Controller prior to 2.0.1.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41594 βΌ
π Read
via "National Vulnerability Database".
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41578 βΌ
π Read
via "National Vulnerability Database".
The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information.π Read
via "National Vulnerability Database".
βΌ CVE-2022-20397 βΌ
π Read
via "National Vulnerability Database".
In SitRilClient_OnResponse of SitRilSe.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-223086933References: N/Aπ Read
via "National Vulnerability Database".
βΌ CVE-2022-41583 βΌ
π Read
via "National Vulnerability Database".
The storage maintenance and debugging module has an array out-of-bounds read vulnerability.Successful exploitation of this vulnerability will cause incorrect statistics of this module.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41580 βΌ
π Read
via "National Vulnerability Database".
The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41593 βΌ
π Read
via "National Vulnerability Database".
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41592 βΌ
π Read
via "National Vulnerability Database".
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-41584 βΌ
π Read
via "National Vulnerability Database".
The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.π Read
via "National Vulnerability Database".
βΌ CVE-2022-38986 βΌ
π Read
via "National Vulnerability Database".
The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-42234 βΌ
π Read
via "National Vulnerability Database".
There is a file inclusion vulnerability in the template management module in UCMS 1.6π Read
via "National Vulnerability Database".
βΌ CVE-2022-41603 βΌ
π Read
via "National Vulnerability Database".
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.π Read
via "National Vulnerability Database".
βΌ CVE-2022-42067 βΌ
π Read
via "National Vulnerability Database".
Online Birth Certificate Management System version 1.0 suffers from an Insecure Direct Object Reference (IDOR) vulnerabilityπ Read
via "National Vulnerability Database".