• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors
Home » CVE’s

CVE’s


CVE
Vendors
Products
Updated
CVSS v2
CVSS v3
CVE-2022-20392
2022-09-17
N/A
7.8 HIGH
In declareDuplicatePermission of ParsedPermissionUtils.java, there is a possible way to obtain a dangerous permission without user consent due to improper input validation. This could lead to local escalation of privilege during app installation or upgrade with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-213323615
CVE-2022-20391
2022-09-16
N/A
9.8 CRITICAL
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257000
CVE-2022-20390
2022-09-16
N/A
9.8 CRITICAL
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257002
CVE-2022-2039
2022-07-25
N/A
8.8 HIGH
The Free Live Chat Support plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.0.11. This is due to missing nonce protection on the livesupporti_settings() function found in the ~/livesupporti.php file. This makes it possible for unauthenticated attackers to inject malicious web scripts into the page, granted they can trick a site's administrator into performing an action such as clicking on a link.
CVE-2022-20389
2022-09-16
N/A
9.8 CRITICAL
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238257004
CVE-2022-20388
2022-09-16
N/A
9.8 CRITICAL
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238227323
CVE-2022-20387
2022-09-16
N/A
9.8 CRITICAL
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238227324
CVE-2022-20386
2022-09-16
N/A
9.8 CRITICAL
Summary:Product: AndroidVersions: Android SoCAndroid ID: A-238227328
CVE-2022-20385
2022-09-16
N/A
9.8 CRITICAL
a function called 'nla_parse', do not check the len of para, it will check nla_type (which can be controlled by userspace) with 'maxtype' (in this case, it is GSCAN_MAX), then it access polciy array 'policy[type]', which OOB access happens.Product: AndroidVersions: Android SoCAndroid ID: A-238379819
CVE-2022-20384
2022-08-13
N/A
9.8 CRITICAL
Product: AndroidVersions: Android kernelAndroid ID: A-211727306References: N/A
« Previous 1 … 10,863 10,864 10,865 10,866 10,867 … 11,258 Next »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE