Categoria: CVE

CVE-2017-13312 | Google Android 8 MediaCas.java createFromParcel input validation

A vulnerability was found in Google Android 8 and classified as problematic. This issue affects the function createFromParcel of the file MediaCas.java. The manipulation leads to improper input validation. The identification of this vulnerability is CVE-2017-13312. Attacking locally is a requirement. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più

CVE-2017-13311 | Google Android 7/8/8.1 ProcessStats.java read permission

A vulnerability has been found in Google Android 7/8/8.1 and classified as critical. This vulnerability affects the function read of the file ProcessStats.java. The manipulation leads to permission issues. This vulnerability was named CVE-2017-13311. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più

CVE-2017-13310 | Google Android 6.0./6.0.1/7/8/8.1 ViewPager.java createFromParcel permission

A vulnerability, which was classified as critical, was found in Google Android 6.0./6.0.1/7/8/8.1. This affects the function createFromParcel of the file ViewPager.java. The manipulation leads to permission issues. This vulnerability is uniquely identified as CVE-2017-13310. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più

CVE-2024-51764 | HPE SGI CXFS local/cluster improper authorization

A vulnerability, which was classified as critical, has been found in HPE SGI CXFS. Affected by this issue is some unknown functionality of the file local/cluster. The manipulation leads to improper authorization. This vulnerability is handled as CVE-2024-51764. The attack needs to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più

CVE-2024-51765 | HPE Cray System Management Software prior COS-2.5.146/COS 23.11.1/CLE 7.0.UP04.PS19 improper authorization

A vulnerability classified as critical was found in HPE Cray System Management Software. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authorization. This vulnerability is known as CVE-2024-51765. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-49060 | Microsoft Azure Stack HCI 22H2/23H2 hard-coded credentials

A vulnerability was found in Microsoft Azure Stack HCI 22H2/23H2. It has been classified as critical. This affects an unknown part. The manipulation leads to hard-coded credentials. This vulnerability is uniquely identified as CVE-2024-49060. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-11217 | Red Hat OpenShift Container Platform 4 OAuth-server Log debug messages revealing unnecessary information

A vulnerability was found in Red Hat OpenShift Container Platform 4 and classified as problematic. Affected by this issue is some unknown functionality of the component OAuth-server Log. The manipulation leads to debug messages revealing unnecessary information. This vulnerability is handled as CVE-2024-11217. The attack may be launched remotely. There is no exploit...

Per saperne di più

CVE-2024-45609 | GLPI up to 10.0.16 Reports Page cross site scripting (GHSA-3j2f-3j4v-hppr)

A vulnerability has been found in GLPI up to 10.0.16 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Reports Page. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2024-45609. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2017-13309 | Google Android 8.1 ConscryptEngine.java readEncryptedData information disclosure

A vulnerability, which was classified as problematic, was found in Google Android 8.1. Affected is the function readEncryptedData of the file ConscryptEngine.java. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2017-13309. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this...

Per saperne di più
Caricamento