» 2019 » 9월

CVE-2019-9274

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9274

In the Android kernel in the mnh driver there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-9274

CVE-2019-9426

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9426

In the Android kernel in Bluetooth there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-9426

CVE-2019-9273

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9273

In the Android kernel in the synaptics_dsx_htc touchscreen driver there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-9273

CVE-2019-9271

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9271

In the Android kernel in the mnh driver there is a race condition due to insufficient locking. This could lead to a use-after-free which could lead to escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-9271

CVE-2019-9442

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9442

In the Android kernel in the mnh driver there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System privileges required. User interaction is not needed for exploitation.

Source: CVE-2019-9442

CVE-2019-9270

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9270

In the Android kernel in unifi and r8180 WiFi drivers there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-9270

CVE-2019-9245

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-9245

In the Android kernel in the f2fs driver there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-9245

CVE-2019-15128

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-15128

iF.SVNAdmin through 1.6.2 allows svnadmin/usercreate.php CSRF to create a user.

Source: CVE-2019-15128

CVE-2019-2182

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-2182

In the Android kernel in the kernel MMU code there is a possible execution path leaving some kernel text and rodata pages writable. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Source: CVE-2019-2182

CVE-2019-16088

Posted on 2019년 9월 7일2019년 9월 7일 by admin

CVE-2019-16088

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc.

Source: CVE-2019-16088