CVE-2021-40046
PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could allow the attacker to access certain resource beyond its privilege.
Source: CVE-2021-40046
[월:] 2022년 02월
CVE-2021-40043
CVE-2021-40043
The laser command injection vulnerability exists on AIS-BW80H-00 versions earlier than AIS-BW80H-00 9.0.3.4(H100SP13C00). The devices cannot effectively defend against external malicious interference. Attackers need the device to be visually exploitable and successful triggering of this vulnerability could execute voice commands on the device.
Source: CVE-2021-40043
CVE-2021-37504
CVE-2021-37504
A cross-site scripting (XSS) vulnerability in the fileNameStr parameter of jQuery-Upload-File v4.0.11 allows attackers to execute arbitrary web scripts or HTML via a crafted file with a Javascript payload in the file name.
Source: CVE-2021-37504
CVE-2021-26617
CVE-2021-26617
This issues due to insufficient verification of the various input values from user’s input. The vulnerability allows remote attackers to execute malicious code in Firstmall via navercheckout_add function.
Source: CVE-2021-26617
CVE-2021-37103
CVE-2021-37103
There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality.
Source: CVE-2021-37103
CVE-2021-22480
CVE-2021-22480
The interface of a certain HarmonyOS module has an integer overflow vulnerability. Successful exploitation of this vulnerability may lead to heap memory overflow.
Source: CVE-2021-22480
CVE-2021-22479
CVE-2021-22479
The interface of a certain HarmonyOS module has an invalid address access vulnerability. Successful exploitation of this vulnerability may lead to kernel crash.
Source: CVE-2021-22479
CVE-2021-37027
CVE-2021-37027
There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service integrity.
Source: CVE-2021-37027
CVE-2021-22489
CVE-2021-22489
There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service availability.
Source: CVE-2021-22489
CVE-2021-22478
CVE-2021-22478
The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of this vulnerability may lead to information leakage.
Source: CVE-2021-22478