8.3

CVSS4.0

CVE-2024-21850 -

Sensitive information in resource not removed before reuse in some Intel(R) TDX Seamldr module software before version 1.5.02.00 may allow a privileged user to potentially enable escalation of privilege via local access.

πŸ“… Published: Nov. 13, 2024, 8:31 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.8

CVSS4.0

CVE-2024-29076 -

Uncaught exception for some Intel(R) CST software before version 8.7.10803 may allow an authenticated user to potentially enable denial of service via local access.

πŸ“… Published: Nov. 13, 2024, 8:20 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-11191 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: Nov. 13, 2024, 6:30 p.m. πŸ”„ Last Modified: Feb. 11, 2025, 2:15 a.m.

7.3

CVSS3.1

CVE-2024-43093 -

In shouldHideDocument of ExternalStorageProvider.java, there is a possible bypass of a file path filter designed to prevent access to sensitive directories due to incorrect unicode normalization. This could lead to local escalation of privilege with no additional execution privileges needed. User …

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Oct. 23, 2025, 2:52 p.m.

9.8

CVSS3.1

CVE-2024-43091 -

In filterMask of SkEmbossMaskFilter.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Dec. 17, 2024, 8:35 p.m.

5

CVSS3.1

CVE-2024-43090 -

In multiple locations, there is a possible cross-user image read due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Aug. 26, 2025, 11:15 p.m.

7.8

CVSS3.1

CVE-2024-43089 -

In updateInternal of MediaProvider.java , there is a possible access of another app's files due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Dec. 17, 2024, 9:04 p.m.

8.4

CVSS3.1

CVE-2024-43088 -

In multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission settings belonging to another user on the device due to a missing permission check. This could lead to local escalation of privilege across user boundaries with no additional execution privileges needed.…

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Dec. 17, 2024, 9:16 p.m.

8.4

CVSS3.1

CVE-2024-43087 -

In getInstalledAccessibilityPreferences of AccessibilitySettings.java, there is a possible way to hide an enabled accessibility service in the accessibility service settings due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges ne…

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Dec. 18, 2024, 4:59 p.m.

5.5

CVSS3.1

CVE-2024-43086 -

In validateAccountsInternal of AccountManagerService.java, there is a possible way to leak account credentials to a third party app due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati…

πŸ“… Published: Nov. 13, 2024, 5:25 p.m. πŸ”„ Last Modified: Dec. 18, 2024, 4:58 p.m.
Total resulsts: 348147
Page 7791 of 34,815
Β« previous page Β» next page
Filters