VulDB Recent Entries

A vulnerability was found in D-Link DI-8400 16.07.26A1. It has been declared as critical. This vulnerability affects the function msp_info_htm. The manipulation of the argument cmd leads to Privilege Escalation. This vulnerability was named CVE-2024-52739. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Google Android 7/8/8.1/9. It has been classified as problematic. This affects the function writeToParcel of the file MediaPlayer.java. The manipulation leads to deserialization. This vulnerability is uniquely identified as CVE-2018-9474. Local access is required to approach this attack. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android 8/8.1/9 and classified as problematic. Affected by this issue is the function intr_data_copy_cb of the file btif_hd.cc of the component Bluetooth Service. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2018-9482. An attack has to be approached locally. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability has been found in Google Android 8/8.1/9 and classified as problematic. Affected by this vulnerability is the function setVpnForcedLocked of the file Vpn.java. The manipulation leads to denial of service. This vulnerability is known as CVE-2018-9487. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Google Android 7/8/8.1/9. Affected is the function hidh_l2cif_data_ind of the file hidh_conn.cc. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2018-9486. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, has been found in Google Android 7/8/8.1/9. This issue affects the function bff_Scanner_addOutPos of the file Scanner.c. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2018-9470. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as problematic was found in Google Android 7/8/8.1/9. This vulnerability affects the function HeadsetInterface::ClccResponse of the file btif_hf.cc. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2018-9475. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical has been found in Google Android 7/8/8.1/9. This affects the function process_service_attr_req of the file sdp_server.cc. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2018-9478. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android 8/8.1/9. It has been rated as problematic. Affected by this issue is the function bta_hd_set_report_act of the file bta_hd_act.cc of the component Bluetooth Service. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2018-9481. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android 8/8.1/9. It has been declared as problematic. Affected by this vulnerability is the function bta_hd_get_report_act of the file bta_hd_act.cc of the component Bluetooth Service. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2018-9480. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Android 7/8/8.1/9. It has been classified as critical. Affected is the function process_service_attr_req of the file sdp_server.cc. The manipulation leads to out-of-bounds write. This vulnerability is traded as CVE-2018-9479. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Kasda KW6512 1.0 and classified as critical. This issue affects some unknown processing of the file internet.cgi of the component Quick Setup/Internet page. The manipulation leads to os command injection. The identification of this vulnerability is CVE-2024-29292. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in Google Android 7/8/8.1/9 and classified as problematic. This vulnerability affects the function l2cble_process_sig_cmd of the file l2c_ble.cc. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2018-9485. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, was found in Google Android 7/8/8.1/9. This affects the function bta_dm_remove_sec_dev_entry of the file bta_dm_act.cc. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2018-9483. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Google Android 7/8/8.1/9. Affected by this issue is the function l2cu_send_peer_config_rej of the file l2c_utils.cc. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2018-9484. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in Google Android 7/8/8.1. Affected by this vulnerability is the function xmlMemStrdupLoc of the file xmlmemory.c. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2018-9472. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical has been found in SEMCMS 4.8. Affected is an unknown function of the file SEMCMS_SeoAndTag.php. The manipulation of the argument ldgid leads to sql injection. This vulnerability is traded as CVE-2024-52725. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/file_manage_control of the component File Handler. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2024-52770. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in audimexEE up to 15.1.20. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to Privilege Escalation. This vulnerability was named CVE-2024-51162. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Google Android 7/8/8.1/9. It has been classified as problematic. This affects the function query of the file DownloadManager.java. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2018-9468. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.