Search Results (35577 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-40398 1 Apple 3 Ipados, Iphone Os, Macos 2025-03-13 8.8 High
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.4, macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A sandboxed process may be able to circumvent sandbox restrictions.
CVE-2024-27897 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Input verification vulnerability in the call module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-27896 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Input verification vulnerability in the log module. Impact: Successful exploitation of this vulnerability can affect integrity.
CVE-2023-52552 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Input verification vulnerability in the power module. Impact: Successful exploitation of this vulnerability will affect availability.
CVE-2023-52551 1 Huawei 2 Emui, Harmonyos 2025-03-13 5.3 Medium
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2023-52543 1 Huawei 2 Emui, Harmonyos 2025-03-13 6.2 Medium
Permission verification vulnerability in the system module. Impact: Successful exploitation of this vulnerability will affect availability.
CVE-2023-52549 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2023-52550 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Vulnerability of data verification errors in the kernel module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2024-20935 1 Oracle 1 Installed Base 2025-03-13 6.1 Medium
Vulnerability in the Oracle Installed Base product of Oracle E-Business Suite (component: Engineering Change Order). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Installed Base. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Installed Base, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Installed Base accessible data as well as unauthorized read access to a subset of Oracle Installed Base accessible data. CVSS 3.1 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).
CVE-2024-5697 1 Mozilla 1 Firefox 2025-03-13 5.3 Medium
A website was able to detect when a user took a screenshot of a page using the built-in Screenshot functionality in Firefox. This vulnerability affects Firefox < 127.
CVE-2024-56940 1 Learndash 1 Learndash 2025-03-13 7.5 High
An issue in the profile image upload function of LearnDash v6.7.1 allows attackers to cause a Denial of Service (DoS) via excessive file uploads.
CVE-2024-45335 2 Trend Micro Inc, Trendmicro 2 Antivirus One, Antivirus One 2025-03-13 8.4 High
Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection.
CVE-2024-37391 2 Microsoft, Proton 2 Windows, Protonvpn 2025-03-13 7.8 High
ProtonVPN before 3.2.10 on Windows mishandles the drive installer path, which should use this: '"' + ExpandConstant('{autopf}\Proton\Drive') + '"' in Setup/setup.iss.
CVE-2024-29779 1 Google 1 Android 2025-03-13 7.4 High
there is a possible escalation of privilege due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2024-0019 1 Google 1 Android 2025-03-13 6.2 Medium
In setListening of AppOpsControllerImpl.java, there is a possible way to hide the microphone privacy indicator when restarting systemUI due to a missing check for active recordings. This could lead to local denial of service with no additional execution privileges needed. User interaction is needed for exploitation.
CVE-2023-21113 1 Google 1 Android 2025-03-13 7.8 High
In multiple locations, there is a possible permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2023-52716 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerability will affect availability.
CVE-2023-52380 1 Huawei 2 Emui, Harmonyos 2025-03-13 4.3 Medium
Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality.
CVE-2023-52372 1 Huawei 2 Emui, Harmonyos 2025-03-13 7.5 High
Vulnerability of input parameter verification in the motor module.Successful exploitation of this vulnerability may affect availability.
CVE-2023-52368 1 Huawei 2 Emui, Harmonyos 2025-03-13 5.3 Medium
Input verification vulnerability in the account module.Successful exploitation of this vulnerability may cause features to perform abnormally.