‼ CVE-2023-25521 ‼
📖 Read
via "National Vulnerability Database".
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution with unnecessary privileges by leveraging a weakness whereby proper input parameter validation is not performed. A successful exploit of this vulnerability may lead to denial of service, information disclosure, and data tampering.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20689 ‼
📖 Read
via "National Vulnerability Database".
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664741; Issue ID: ALPS07664741.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20692 ‼
📖 Read
via "National Vulnerability Database".
In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664720; Issue ID: ALPS07664720.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20753 ‼
📖 Read
via "National Vulnerability Database".
In rpmb, there is a possible out of bounds write due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07460390; Issue ID: ALPS07588667.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20691 ‼
📖 Read
via "National Vulnerability Database".
In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664731; Issue ID: ALPS07664731.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20758 ‼
📖 Read
via "National Vulnerability Database".
In cmdq, there is a possible memory corruption due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07636133; Issue ID: ALPS07636130.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-25517 ‼
📖 Read
via "National Vulnerability Database".
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a guest OS may be able to control resources for which it is not authorized, which may lead to information disclosure and data tampering.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20755 ‼
📖 Read
via "National Vulnerability Database".
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07509605.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20768 ‼
📖 Read
via "National Vulnerability Database".
In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07559800.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20774 ‼
📖 Read
via "National Vulnerability Database".
In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07292228; Issue ID: ALPS07292228.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20775 ‼
📖 Read
via "National Vulnerability Database".
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07978760; Issue ID: ALPS07363410.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20756 ‼
📖 Read
via "National Vulnerability Database".
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07549928.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20754 ‼
📖 Read
via "National Vulnerability Database".
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07563028; Issue ID: ALPS07588343.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20773 ‼
📖 Read
via "National Vulnerability Database".
In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07611449; Issue ID: ALPS07441735.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20772 ‼
📖 Read
via "National Vulnerability Database".
In vow, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441796; Issue ID: ALPS07441796.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20767 ‼
📖 Read
via "National Vulnerability Database".
In pqframework, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629585; Issue ID: ALPS07629584.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-30990 ‼
📖 Read
via "National Vulnerability Database".
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a remote attacker to execute CL commands as QUSER, caused by an exploitation of DDM architecture. IBM X-Force ID: 254036.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-20771 ‼
📖 Read
via "National Vulnerability Database".
In display, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07671046; Issue ID: ALPS07671046.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-32666 ‼
📖 Read
via "National Vulnerability Database".
In Wi-Fi, there is a possible low throughput due to misrepresentation of critical information. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220829014; Issue ID: GN20220829014.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-21641 ‼
📖 Read
via "National Vulnerability Database".
An app with non-privileged access can change global system brightness and cause undesired system behavior.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-3133 ‼
📖 Read
via "National Vulnerability Database".
The Tutor LMS WordPress plugin before 2.2.1 does not implement adequate permission checks for REST API endpoints, allowing unauthenticated attackers to access information from Lessons that should not be publicly available.📖 Read
via "National Vulnerability Database".