CVE-2026-20438
- EPSS 0.06%
- Veröffentlicht 02.03.2026 08:39:17
- Zuletzt bearbeitet 03.03.2026 12:48:14
In MAE, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS1...
CVE-2026-20437
- EPSS 0.07%
- Veröffentlicht 02.03.2026 08:39:16
- Zuletzt bearbeitet 03.03.2026 12:48:58
In MAE, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10431940; Issue ...
CVE-2026-20435
- EPSS 0.12%
- Veröffentlicht 02.03.2026 08:39:12
- Zuletzt bearbeitet 03.03.2026 12:52:46
In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interact...
CVE-2026-20428
- EPSS 0.08%
- Veröffentlicht 02.03.2026 08:39:06
- Zuletzt bearbeitet 03.03.2026 13:07:02
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch...
CVE-2026-20427
- EPSS 0.08%
- Veröffentlicht 02.03.2026 08:39:04
- Zuletzt bearbeitet 03.03.2026 13:08:04
In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. P...
CVE-2026-20426
- EPSS 0.08%
- Veröffentlicht 02.03.2026 08:39:01
- Zuletzt bearbeitet 03.03.2026 13:09:01
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch...
CVE-2026-20425
- EPSS 0.08%
- Veröffentlicht 02.03.2026 08:38:59
- Zuletzt bearbeitet 03.03.2026 13:10:00
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch...
CVE-2026-0106
- EPSS 0.11%
- Veröffentlicht 05.02.2026 20:19:20
- Zuletzt bearbeitet 19.02.2026 18:24:53
In vpu_mmap of vpu_ioctl, there is a possible arbitrary address mmap due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2026-20417
- EPSS 0.09%
- Veröffentlicht 02.02.2026 08:15:13
- Zuletzt bearbeitet 03.02.2026 21:52:14
In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID...
CVE-2026-20415
- EPSS 0.05%
- Veröffentlicht 02.02.2026 08:15:11
- Zuletzt bearbeitet 03.02.2026 21:53:59
In imgsys, there is a possible memory corruption due to improper locking. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS103632...