CVE-2022-20054
- EPSS 0.21%
- Veröffentlicht 10.03.2022 17:45:05
- Zuletzt bearbeitet 21.11.2024 06:42:02
In ims service, there is a possible AT command injection due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: AL...
CVE-2022-20055
- EPSS 0.13%
- Veröffentlicht 10.03.2022 17:45:05
- Zuletzt bearbeitet 21.11.2024 06:42:02
In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User i...
CVE-2022-20056
- EPSS 0.13%
- Veröffentlicht 10.03.2022 17:45:05
- Zuletzt bearbeitet 21.11.2024 06:42:02
In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User i...
CVE-2022-20051
- EPSS 0.1%
- Veröffentlicht 10.03.2022 17:45:04
- Zuletzt bearbeitet 21.11.2024 06:42:02
In ims service, there is a possible unexpected application behavior due to incorrect privilege assignment. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Pat...
CVE-2022-20053
- EPSS 0.12%
- Veröffentlicht 10.03.2022 17:45:04
- Zuletzt bearbeitet 21.11.2024 06:42:02
In ims service, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...
CVE-2022-20049
- EPSS 0.11%
- Veröffentlicht 10.03.2022 17:45:03
- Zuletzt bearbeitet 21.11.2024 06:42:01
In vpu, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05954679; ...
CVE-2022-20050
- EPSS 0.13%
- Veröffentlicht 10.03.2022 17:45:03
- Zuletzt bearbeitet 21.11.2024 06:42:01
In connsyslogger, there is a possible symbolic link following due to improper link resolution. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06...
CVE-2022-20047
- EPSS 0.12%
- Veröffentlicht 10.03.2022 17:45:02
- Zuletzt bearbeitet 21.11.2024 06:42:01
In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0...
CVE-2022-20048
- EPSS 0.12%
- Veröffentlicht 10.03.2022 17:45:02
- Zuletzt bearbeitet 21.11.2024 06:42:01
In video decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0...
CVE-2022-23729
- EPSS 0.11%
- Veröffentlicht 04.03.2022 16:15:10
- Zuletzt bearbeitet 21.11.2024 06:49:11
When the device is in factory state, it can be access the shell without adb authentication process. The LG ID is LVE-SMP-210010.