Total
2087 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-39792 | 1 Google | 1 Android | 2024-11-21 | 4.1 Medium |
| In usb_gadget_giveback_request of core.c, there is a possible use after free out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-161010552References: Upstream kernel | ||||
| CVE-2021-39735 | 1 Google | 1 Android | 2024-11-21 | 6.4 Medium |
| In gasket_alloc_coherent_memory of gasket_page_table.c, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-151455484References: N/A | ||||
| CVE-2021-39727 | 1 Google | 1 Android | 2024-11-21 | 4.1 Medium |
| In eicPresentationRetrieveEntryValue of acropora/app/identity/libeic/EicPresentation.c, there is a possible information disclosure due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-196388042References: N/A | ||||
| CVE-2021-39713 | 2 Debian, Google | 2 Debian Linux, Android | 2024-11-21 | 7.0 High |
| Product: AndroidVersions: Android kernelAndroid ID: A-173788806References: Upstream kernel | ||||
| CVE-2021-39712 | 1 Google | 1 Android | 2024-11-21 | 6.4 Medium |
| In TBD of TBD, there is a possible user after free vulnerability due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-176918884References: N/A | ||||
| CVE-2021-39686 | 1 Google | 1 Android | 2024-11-21 | 7.0 High |
| In several functions of binder.c, there is a possible way to represent the wrong domain to SELinux due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-200688826References: Upstream kernel | ||||
| CVE-2021-39679 | 1 Google | 1 Android | 2024-11-21 | 7.0 High |
| In init of vendor_graphicbuffer_meta.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-188745089References: N/A | ||||
| CVE-2021-39648 | 1 Google | 1 Android | 2024-11-21 | 4.1 Medium |
| In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-160822094References: Upstream kernel | ||||
| CVE-2021-39642 | 1 Google | 1 Android | 2024-11-21 | 6.4 Medium |
| In synchronous_process_io_entries of lwis_ioctl.c, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-195731663References: N/A | ||||
| CVE-2021-39629 | 1 Google | 1 Android | 2024-11-21 | 7.0 High |
| In phTmlNfc_Init and phTmlNfc_CleanUp of phTmlNfc.cc, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-9Android ID: A-197353344 | ||||
| CVE-2021-39212 | 1 Imagemagick | 1 Imagemagick | 2024-11-21 | 4.4 Medium |
| ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when specifically excluded by a `module` policy in `policy.xml`. ex. <policy domain="module" rights="none" pattern="PS" />. The issue has been resolved in ImageMagick 7.1.0-7 and in 6.9.12-22. Fortunately, in the wild, few users utilize the `module` policy and instead use the `coder` policy that is also our workaround recommendation: <policy domain="coder" rights="none" pattern="{PS,EPI,EPS,EPSF,EPSI}" />. | ||||
| CVE-2021-38587 | 1 Cpanel | 1 Cpanel | 2024-11-21 | 7.5 High |
| In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586). | ||||
| CVE-2021-38191 | 1 Tokio | 1 Tokio | 2024-11-21 | 5.9 Medium |
| An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread. | ||||
| CVE-2021-37991 | 2 Debian, Google | 2 Debian Linux, Chrome | 2024-11-21 | 7.5 High |
| Race in V8 in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||||
| CVE-2021-37134 | 1 Huawei | 1 Harmonyos | 2024-11-21 | 8.1 High |
| Location-related APIs exists a Race Condition vulnerability.Successful exploitation of this vulnerability may use Higher Permissions for invoking the interface of location-related components. | ||||
| CVE-2021-37085 | 1 Huawei | 1 Harmonyos | 2024-11-21 | 5.9 Medium |
| There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service. | ||||
| CVE-2021-37082 | 1 Huawei | 1 Harmonyos | 2024-11-21 | 5.9 Medium |
| There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to motionhub crash. | ||||
| CVE-2021-37074 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-11-21 | 8.1 High |
| There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the user root privilege escalation. | ||||
| CVE-2021-37073 | 1 Huawei | 1 Harmonyos | 2024-11-21 | 3.7 Low |
| There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the detection result is tampered with. | ||||
| CVE-2021-37069 | 1 Huawei | 3 Emui, Harmonyos, Magic Ui | 2024-11-21 | 7.4 High |
| There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected. | ||||