» 2021 » 6월

CVE-2010-2525

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2010-2525

A flaw was discovered in gfs2 file systemâ€™s handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.

Source: CVE-2010-2525

CVE-2010-2804

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2010-2804

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.

Source: CVE-2010-2804

CVE-2010-3300

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2010-3300

It was found that all OWASP ESAPI for Java up to version 2.0 RC2 are vulnerable to padding oracle attacks.

Source: CVE-2010-3300

CVE-2010-2486

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2010-2486

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.

Source: CVE-2010-2486

CVE-2021-0559

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2021-0559

In Lag_max of p_ol_wgh.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-172312730

Source: CVE-2021-0559

CVE-2021-0558

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2021-0558

In fillMainDataBuf of pvmp3_framedecoder.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-173473906

Source: CVE-2021-0558

CVE-2021-0556

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2021-0556

In getBlockSum of fastcodemb.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-172716941

Source: CVE-2021-0556

CVE-2021-0557

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2021-0557

In setRange of ABuffer.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-179046129

Source: CVE-2021-0557

CVE-2021-0554

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2021-0554

In isBackupServiceActive of BackupManagerService.java, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-158482162

Source: CVE-2021-0554

CVE-2021-0555

Posted on 2021년 6월 22일2021년 6월 22일 by admin

CVE-2021-0555

In RenderStruct of protostream_objectsource.cc, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-179161711

Source: CVE-2021-0555