CVE-2022-26452
- EPSS 0.08%
- Veröffentlicht 07.10.2022 20:15:09
- Zuletzt bearbeitet 21.11.2024 06:53:58
In isp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07262305; Issue ID: ALPS07262...
CVE-2022-39855
- EPSS 0.09%
- Veröffentlicht 07.10.2022 15:15:20
- Zuletzt bearbeitet 21.11.2024 07:18:23
Improper access control vulnerability in FACM application prior to SMR Oct-2022 Release 1 allows a local attacker to connect arbitrary AP and Bluetooth devices.
CVE-2022-39856
- EPSS 0.08%
- Veröffentlicht 07.10.2022 15:15:20
- Zuletzt bearbeitet 21.11.2024 07:18:24
Improper access control vulnerability in imsservice application prior to SMR Oct-2022 Release 1 allows local attackers to access call information.
CVE-2022-39851
- EPSS 0.08%
- Veröffentlicht 07.10.2022 15:15:19
- Zuletzt bearbeitet 21.11.2024 07:18:23
Improper access control vulnerability in CocktailBarService prior to SMR Oct-2022 Release 1 allows local attacker to bind service that require BIND_REMOTEVIEWS permission.
CVE-2022-39852
- EPSS 0.1%
- Veröffentlicht 07.10.2022 15:15:19
- Zuletzt bearbeitet 21.11.2024 07:18:23
A heap-based overflow vulnerability in makeContactAGIF in libagifencoder.quram.so library prior to SMR Oct-2022 Release 1 allows attacker to perform code execution.
CVE-2022-39853
- EPSS 0.09%
- Veröffentlicht 07.10.2022 15:15:19
- Zuletzt bearbeitet 21.11.2024 07:18:23
A use after free vulnerability in perf-mgr driver prior to SMR Oct-2022 Release 1 allows attacker to cause memory access fault.
CVE-2022-39854
- EPSS 0.08%
- Veröffentlicht 07.10.2022 15:15:19
- Zuletzt bearbeitet 21.11.2024 07:18:23
Improper protection in IOMMU prior to SMR Oct-2022 Release 1 allows unauthorized access to secure memory.
CVE-2022-39847
- EPSS 0.08%
- Veröffentlicht 07.10.2022 15:15:18
- Zuletzt bearbeitet 21.11.2024 07:18:23
Use after free vulnerability in set_nft_pid and signal_handler function of NFC driver prior to SMR Oct-2022 Release 1 allows attackers to perform malicious actions.
CVE-2022-39848
- EPSS 0.08%
- Veröffentlicht 07.10.2022 15:15:18
- Zuletzt bearbeitet 21.11.2024 07:18:23
Exposure of sensitive information in AT_Distributor prior to SMR Oct-2022 Release 1 allows local attacker to access SerialNo via log.
CVE-2022-39849
- EPSS 0.08%
- Veröffentlicht 07.10.2022 15:15:18
- Zuletzt bearbeitet 21.11.2024 07:18:23
Improper access control in knox_vpn_policy service prior to SMR Oct-2022 Release 1 allows allows unauthorized read of configuration data.