CVE List - 2023 / October
Showing 2501 - 2600 of 2690 CVEs for October 2023 (Page 26 of 27)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-21348 | 2023-10-30 | In Window Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information... |
| CVE-2023-21349 | 2023-10-30 | In Package Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information... |
| CVE-2023-21350 | 2023-10-30 | In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information... |
| CVE-2023-21351 | 2023-10-30 | In multiple locations, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with no additional execution... |
| CVE-2023-21352 | 2023-10-30 | In NFA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User... |
| CVE-2023-21353 | 2023-10-30 | In NFA, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User... |
| CVE-2023-21354 | 2023-10-30 | In Package Manager Service, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local... |
| CVE-2023-21355 | 2023-10-30 | In libaudioclient, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2023-21356 | 2023-10-30 | In Bluetooth, there is a possible out of bounds write due to a missing bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed.... |
| CVE-2023-21357 | 2023-10-30 | In NFC, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction... |
| CVE-2023-21358 | 2023-10-30 | In UWB Google, there is a possible way for a malicious app to masquerade as system app com.android.uwb.resources due to improperly used crypto. This could lead to local escalation of... |
| CVE-2023-21359 | 2023-10-30 | In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution... |
| CVE-2023-21360 | 2023-10-30 | In Bluetooth, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction... |
| CVE-2023-21361 | 2023-10-30 | In Bluetooth, there is a possibility of code-execution due to a use after free. This could lead to paired device escalation of privilege in the privileged Bluetooth process with no... |
| CVE-2023-21362 | 2023-10-30 | In Usage, there is a possible permanent DoS due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not... |
| CVE-2023-21364 | 2023-10-30 | In ContactsProvider, there is a possible crash loop due to resource exhaustion. This could lead to local persistent denial of service in the Phone app with User execution privileges needed.... |
| CVE-2023-21365 | 2023-10-30 | In Contacts, there is a possible crash loop due to resource exhaustion. This could lead to local denial of service in the Phone app with User execution privileges needed. User... |
| CVE-2023-21366 | 2023-10-30 | In Scudo, there is a possible way for an attacker to predict heap allocation patterns due to insecure implementation/design. This could lead to local information disclosure with no additional execution... |
| CVE-2023-21367 | 2023-10-30 | In Scudo, there is a possible way to exploit certain heap OOB read/write issues due to an insecure implementation/design. This could lead to local information disclosure with no additional execution... |
| CVE-2023-21368 | 2023-10-30 | In Audio, there is a possible out of bounds read due to missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction... |
| CVE-2023-21369 | 2023-10-30 | In Usage Access, there is a possible way to display a Settings usage access restriction toggle screen due to a permissions bypass. This could lead to local denial of service... |
| CVE-2023-21370 | 2023-10-30 | In the Security Element API, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges... |
| CVE-2023-21371 | 2023-10-30 | In Secure Element, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User... |
| CVE-2023-21372 | 2023-10-30 | In libdexfile, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2023-21373 | 2023-10-30 | In Telephony, there is a possible way for a guest user to change the preferred SIM due to a missing permission check. This could lead to local escalation of privilege... |
| CVE-2023-21374 | 2023-10-30 | In System UI, there is a possible factory reset protection bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional... |
| CVE-2023-21375 | 2023-10-30 | In Sysproxy, there is a possible out of bounds write due to an integer underflow. This could lead to local escalation of privilege with no additional execution privileges needed. User... |
| CVE-2023-21376 | 2023-10-30 | In Telephony, there is a possible way to retrieve the ICCID due to a logic error in the code. This could lead to local information disclosure with no additional execution... |
| CVE-2023-21377 | 2023-10-30 | In SELinux Policy, there is a possible restriction bypass due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is... |
| CVE-2023-21378 | 2023-10-30 | In Telecomm, there is a possible way to silence the ring for calls of secondary users due to a missing permission check. This could lead to local escalation of privilege... |
| CVE-2023-21379 | 2023-10-30 | In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the Bluetooth server with System execution... |
| CVE-2023-21380 | 2023-10-30 | In Bluetooth, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User... |
| CVE-2023-21381 | 2023-10-30 | In Media Resource Manager, there is a possible local arbitrary code execution due to use after free. This could lead to local escalation of privilege with no additional execution privileges... |
| CVE-2023-21382 | 2023-10-30 | In Content Resolver, there is a possible method to access metadata about existing content providers on the device due to a missing permission check. This could lead to local information... |
| CVE-2023-21383 | 2023-10-30 | In Settings, there is a possible way for the user to unintentionally send extra data due to an unclear prompt. This could lead to local information disclosure with no additional... |
| CVE-2023-21384 | 2023-10-30 | In Package Manager, there is a possible possible permissions bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is... |
| CVE-2023-21385 | 2023-10-30 | In Whitechapel, there is a possible out of bounds read due to memory corruption. This could lead to local information disclosure with no additional execution privileges needed. User interaction is... |
| CVE-2023-21387 | 2023-10-30 | In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. This could lead to local information... |
| CVE-2023-21388 | 2023-10-30 | In Settings, there is a possible restriction bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction... |
| CVE-2023-21389 | 2023-10-30 | In Settings, there is a possible bypass of profile owner restrictions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges... |
| CVE-2023-21390 | 2023-10-30 | In Sim, there is a possible way to evade mobile preference restrictions due to a permission bypass. This could lead to local escalation of privilege with no additional execution privileges... |
| CVE-2023-21391 | 2023-10-30 | In Messaging, there is a possible way to disable the messaging application due to improper input validation. This could lead to remote denial of service with no additional execution privileges... |
| CVE-2023-21392 | 2023-10-30 | In Bluetooth, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege when connecting to a Bluetooth device... |
| CVE-2023-21393 | 2023-10-30 | In Settings, there is a possible way for the user to change SIM due to a missing permission check. This could lead to local escalation of privilege with no additional... |
| CVE-2023-21394 | 2023-10-30 | In registerPhoneAccount of TelecomServiceImpl.java, there is a possible way to reveal images from another user due to a missing permission check. This could lead to local information disclosure with no... |
| CVE-2023-21395 | 2023-10-30 | In Bluetooth, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure over Bluetooth with no additional execution privileges... |
| CVE-2023-21396 | 2023-10-30 | In Activity Manager, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges... |
| CVE-2023-21397 | 2023-10-30 | In Setup Wizard, there is a possible way to save a WiFi network due to an insecure default value. This could lead to local escalation of privilege with no additional... |
| CVE-2023-21398 | 2023-10-30 | In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution... |
| CVE-2023-40101 | 2023-10-30 | In collapse of canonicalize_md.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges... |
| CVE-2023-45780 | 2023-10-30 | In Print Service, there is a possible background activity launch due to a logic error in the code. This could lead to local escalation of privilege with no additional execution... |
| CVE-2023-41891 | 2023-10-30 | FlyteAdmin SQL Injection in List Filters |
| CVE-2023-42803 | 2023-10-30 | BigBlueButton Unrestricted File Upload vulnerability |
| CVE-2023-42804 | 2023-10-30 | BigBlueButton Path Traversal – Reading Certain File Extensions |
| CVE-2023-43647 | 2023-10-30 | baserCMS Cross-site Scripting vulnerability in File upload Feature |
| CVE-2023-43648 | 2023-10-30 | baserCMS Directory Traversal vulnerability in Form submission data management Feature |
| CVE-2023-43649 | 2023-10-30 | baserCMS CSRF vulnerability in Content preview Feature |
| CVE-2023-43792 | 2023-10-30 | baserCMS Code Injection Vulnerability in Mail Form Feature |
| CVE-2023-5349 | 2023-10-30 | Draw while calling getdrawinfo() |
| CVE-2023-43797 | 2023-10-30 | BigBlueButton Stored Cross-site Scripting vulnerability at Guest Lobby |
| CVE-2023-43798 | 2023-10-30 | BigBlueButton Blind SSRF When Uploading Presentation (mitigation bypass) |
| CVE-2023-44397 | 2023-10-30 | CloudExplorer Lite permission bypass vulnerability |
| CVE-2023-45670 | 2023-10-30 | Frigate cross-site request forgery in `config_save` and `config_set` request handlers |
| CVE-2023-45671 | 2023-10-30 | Frigate reflected XSS through `/<camera_name>` API endpoints |
| CVE-2023-45672 | 2023-10-30 | Frigate unsafe deserialization in `load_config_with_no_duplicates` of `frigate/util/builtin.py` |
| CVE-2023-46129 | 2023-10-30 | xkeys Seal encryption used fixed key for all encryption |
| CVE-2023-46138 | 2023-10-30 | JumpServer default admin user email leak password reset |
| CVE-2023-46139 | 2023-10-30 | KernelSU signature validation mismatch |
| CVE-2015-20110 | 2023-10-31 | JHipster generator-jhipster before 2.23.0 allows a timing attack against validateToken due to a string comparison that stops at the first character that is different. Attackers can guess tokens by brute... |
| CVE-2019-25155 | 2023-10-31 | DOMPurify before 1.0.11 allows reverse tabnabbing in demos/hooks-target-blank-demo.html because links lack a 'rel="noopener noreferrer"' attribute. |
| CVE-2023-27846 | 2023-10-31 | SQL injection vulnerability found in PrestaShop themevolty v.4.0.8 and before allow a remote attacker to gain privileges via the tvcmsblog, tvcmsvideotab, tvcmswishlist, tvcmsbrandlist, tvcmscategorychainslider, tvcmscategoryproduct, tvcmscategoryslider, tvcmspaymenticon, tvcmstestimonial components. |
| CVE-2023-31794 | 2023-10-31 | MuPDF v1.21.1 was discovered to contain an infinite recursion in the component pdf_mark_list_push. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted PDF file. |
| CVE-2023-36263 | 2023-10-31 | Prestashop opartlimitquantity 1.4.5 and before is vulnerable to SQL Injection. OpartlimitquantityAlertlimitModuleFrontController::displayAjaxPushAlertMessage()` has sensitive SQL calls that can be executed with a trivial http call and exploited to forge a SQL... |
| CVE-2023-37831 | 2023-10-31 | An issue discovered in Elenos ETG150 FM transmitter v3.12 allows attackers to enumerate user accounts based on server responses when credentials are submitted. |
| CVE-2023-37832 | 2023-10-31 | A lack of rate limiting in Elenos ETG150 FM transmitter v3.12 allows attackers to obtain user credentials via brute force and cause other unspecified impacts. |
| CVE-2023-37833 | 2023-10-31 | Improper access control in Elenos ETG150 FM transmitter v3.12 allows attackers to make arbitrary configuration edits that are only accessed by privileged users. |
| CVE-2023-39610 | 2023-10-31 | An issue in TP-Link Tapo C100 v1.1.15 Build 211130 Rel.15378n(4555) and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted web request. |
| CVE-2023-39695 | 2023-10-31 | Insufficient session expiration in Elenos ETG150 FM Transmitter v3.12 allows attackers to arbitrarily change transmitter configuration and data after logging out. |
| CVE-2023-42425 | 2023-10-31 | An issue in Turing Video Turing Edge+ EVC5FD v.1.38.6 allows remote attacker to execute arbitrary code and obtain sensitive information via the cloud connection components. |
| CVE-2023-43139 | 2023-10-31 | An issue in franfinance before v.2.0.27 allows a remote attacker to execute arbitrary code via the validation.php, and controllers/front/validation.php components. |
| CVE-2023-43295 | 2023-10-31 | Cross Site Request Forgery vulnerability in Click Studios (SA) Pty Ltd Passwordstate v.Build 9785 and before allows a local attacker to execute arbitrary code via a crafted request. |
| CVE-2023-45378 | 2023-10-31 | In the module "PrestaBlog" (prestablog) version 4.4.7 and before from HDclic for PrestaShop, a guest can perform SQL injection. The script ajax slider_positions.php has a sensitive SQL call that can... |
| CVE-2023-45899 | 2023-10-31 | An issue in the component SuperUserSetuserModuleFrontController:init() of idnovate superuser before v2.4.2 allows attackers to bypass authentication via a crafted HTTP call. |
| CVE-2023-45955 | 2023-10-31 | An issue discovered in Nanoleaf Light strip v3.5.10 allows attackers to cause a denial of service via crafted write binding attribute commands. |
| CVE-2023-45996 | 2023-10-31 | SQL injection vulnerability in Senayan Library Management Systems Slims v.9 and Bulian v.9.6.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to... |
| CVE-2023-46040 | 2023-10-31 | Cross Site Scripting vulnerability in GetSimpleCMS v.3.4.0a allows a remote attacker to execute arbitrary code via the a crafted payload to the components.php function. |
| CVE-2023-46356 | 2023-10-31 | In the module "CSV Feeds PRO" (csvfeeds) before 2.6.1 from Bl Modules for PrestaShop, a guest can perform SQL injection. The method `SearchApiCsv::getProducts()` has sensitive SQL call that can be... |
| CVE-2023-46361 | 2023-10-31 | Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulnerability via jbig2_error at /jbig2dec/jbig2.c. |
| CVE-2023-46378 | 2023-10-31 | Stored Cross Site Scripting (XSS) vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php. |
| CVE-2023-46451 | 2023-10-31 | Best Courier Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in the change username field. |
| CVE-2023-46484 | 2023-10-31 | An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary code via the setLedCfg function. |
| CVE-2023-46485 | 2023-10-31 | An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary code via the setTracerouteCfg function of the stecgi.cgi component. |
| CVE-2023-46976 | 2023-10-31 | TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter in the UploadFirmwareFile function. |
| CVE-2023-46977 | 2023-10-31 | TOTOLINK LR1200GB V9.1.0u.6619_B20230130 was discovered to contain a stack overflow via the password parameter in the function loginAuth. |
| CVE-2023-46978 | 2023-10-31 | TOTOLINK X6000R V9.4.0cu.852_B20230719 is vulnerable to Incorrect Access Control.Attackers can reset login password & WIFI passwords without authentication. |
| CVE-2023-46979 | 2023-10-31 | TOTOLINK X6000R V9.4.0cu.852_B20230719 was discovered to contain a command injection vulnerability via the enable parameter in the setLedCfg function. |
| CVE-2023-46992 | 2023-10-31 | TOTOLINK A3300R V17.0.0cu.557_B20221024 is vulnerable to Incorrect Access Control. Attackers are able to reset serveral critical passwords without authentication by visiting specific pages. |
| CVE-2023-46993 | 2023-10-31 | In TOTOLINK A3300R V17.0.0cu.557_B20221024 when dealing with setLedCfg request, there is no verification for the enable parameter, which can lead to command injection. |
| CVE-2023-47094 | 2023-10-31 | A Stored Cross-Site Scripting (XSS) vulnerability in the Account Plans tab of System Settings in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML via the Plan... |
| CVE-2023-47095 | 2023-10-31 | A Stored Cross-Site Scripting (XSS) vulnerability in the Custom fields of Edit Virtual Server under System Customization in Virtualmin 7.7 allows remote attackers to inject arbitrary web script or HTML... |