NVD - Home -nvd.nist.gov

NVD - Home

Time 2020-06-13 13:04:26

Web Name: NVD - Home

WebSite: http://nvd.nist.gov

ID:88

Keywords:

NVD,Home,

Description:

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, misconfigurations, product names, and impact metrics. CVE-2020-0124 In markBootComplete of InstalldNativeService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for expl... read CVE-2020-0124 Published: June 11, 2020; 11:15:12 AM -04:00 CVE-2020-0128 In addPacket of AMPEG4ElementaryAssembler, there is an out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges required. User interaction is not needed for exploitation.P... read CVE-2020-0128 Published: June 11, 2020; 11:15:12 AM -04:00 CVE-2020-1197 An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. Published: June 09, 2020; 04:15:13 PM -04:00 CVE-2020-0181 In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploita... read CVE-2020-0181 Published: June 11, 2020; 11:15:15 AM -04:00 CVE-2020-0219 In onCreate of SliceDeepLinkSpringBoard.java there is a possible insecure Intent. This could lead to local elevation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions... read CVE-2020-0219 Published: June 11, 2020; 11:15:18 AM -04:00 CVE-2020-0178 In getAllConfigFlags of SettingsProvider.cpp, there is a possible illegal read due to a missing permission check. This could lead to local information disclosure of config flags with no additional execution privileges needed. User interaction is not... read CVE-2020-0178 Published: June 11, 2020; 11:15:15 AM -04:00 CVE-2020-0177 In connect() of PanService.java, there is a possible permissions bypass. This could lead to local escalation of privilege to change network connection settings with no additional execution privileges needed. User interaction is not needed for exploit... read CVE-2020-0177 Published: June 11, 2020; 11:15:15 AM -04:00 CVE-2020-0176 In avdt_msg_prs_rej of avdt_msg.cc, there is a possible out-of-bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitat... read CVE-2020-0176 Published: June 11, 2020; 11:15:15 AM -04:00 CVE-2020-0192 In ih264d_decode_slice_thread of ih264d_thread_parse_decode.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction... read CVE-2020-0192 Published: June 11, 2020; 11:15:16 AM -04:00 CVE-2020-0191 In ih264d_update_default_index_list() of ih264d_dpb_mgr.c, there is a possible out of bounds read due to a logic error. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for ex... read CVE-2020-0191 Published: June 11, 2020; 11:15:16 AM -04:00 CVE-2020-0193 In ihevc_intra_pred_chroma_mode_3_to_9_av8 of ihevc_intra_pred_chroma_mode_3_to_9.s, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed... read CVE-2020-0193 Published: June 11, 2020; 11:15:16 AM -04:00 CVE-2020-0195 In ihevcd_iquant_itrans_recon_ctb of ihevcd_iquant_itrans_recon_ctb.c and related functions, there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privilege... read CVE-2020-0195 Published: June 11, 2020; 11:15:16 AM -04:00 CVE-2020-0207 In next_marker of jdmarker.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Produc... read CVE-2020-0207 Published: June 11, 2020; 11:15:17 AM -04:00 CVE-2020-0180 In GetOpusHeaderBuffers() of OpusHeader.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploit... read CVE-2020-0180 Published: June 11, 2020; 11:15:15 AM -04:00 CVE-2020-0143 In nfa_dm_ndef_find_next_handler of nfa_dm_ndef.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of heap data via compromised device firmware with System execution privileges nee... read CVE-2020-0143 Published: June 11, 2020; 11:15:13 AM -04:00 CVE-2020-0142 In rw_i93_sm_format of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitatio... read CVE-2020-0142 Published: June 11, 2020; 11:15:13 AM -04:00 CVE-2020-0140 In rw_i93_sm_detect_ndef of rw_i93.c, there is a possible information disclosure due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploi... read CVE-2020-0140 Published: June 11, 2020; 11:15:13 AM -04:00 CVE-2020-0129 In SetData of btm_ble_multi_adv.cc, there is a possible out-of-bound write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitat... read CVE-2020-0129 Published: June 11, 2020; 11:15:12 AM -04:00 CVE-2020-0139 In NDEF_MsgValidate of ndef_utils.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malformed NFC tag is provided by the firmware. System execution privileges are needed and use... read CVE-2020-0139 Published: June 11, 2020; 11:15:12 AM -04:00 CVE-2020-0144 In btm_proc_sp_req_evt of btm_sec.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure via compromised device firmware with System execution privileges needed. User interaction is n... read CVE-2020-0144 Published: June 11, 2020; 11:15:13 AM -04:00 Information Technology Laboratory (ITL) National Vulnerability Database (NVD) Announcement and Discussion Lists General Questions & Webmaster Contact Email:nvd@nist.govIncident Response Assistance and Non-NVD Related Technical Cyber Security Questions: US-CERT Security Operations Center Email: soc@us-cert.gov Phone: 1-888-282-0870 Sponsored by DHS/NCCIC/US-CERT

TAGS:NVD Home

<<< Thank you for your visit >>>

NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. NVD includes databases of security checklists, security related software flaws, misconfigurations, product names, and impact metrics.

Websites to related :
Evans Library | Florida Tech

　　Due to COVID-19, the Library is currently only open to Florida Tech students, faculty and staff.The Library building is physically open Monday – Frid

Research Computing | RIT

　　RIT Research Computing supplies advanced research technology resources and support to researchers in their quest to discover. ServicesGuiding resea

TU Dublin - Blanchardstown Campu

　　CAO APPLICANTSWe are now TU Dublin Ireland s first Technological University. To view our full range of programmes check out our new website #WeAreTUDu

Electronics – Online Distance

　　Online Distance Learning - Cleveland Institute of Electronics (CIE) provides electronics and computer training via distance learning. Learn at your o

CPSR - Computer Professionals fo

　　Life member and Former CPSR board member Joici Ito has been selected to head MIT Media Lab. See New York Times article for more information. Congratul

Top Universities | Worldwide uni

　　Please tell us about the city you studied in or a city you want to study in by taking our quick survey. Take the surveyNo thanksFind your perfect cour

Microsoft - Official Home Page

　　微软官方商城，618年中巨献：我就耀，状态全开 5月27日至6月20日，参与“先购机，后返现”以旧换新计划，最高折抵8,759元，赢惊喜盲盒！更多好礼、限时直降等你来享！

National Center for Women & Info

　　The idea you don't have is the voice you haven't heard.Inclusion changes what's possible.Master the skills to lead change and reveal the potential in

New Jersey Institute of Technolo

　　“I am gaining an excellent education at NJIT, which is preparing me for my goal of becoming a successful data scientist.” Xiao Liu “I have incredib

Pendleton School District

　　PSD Coronavirus News & Resources The Pendleton School District is committed to helping community and family through the coronavirus pandemic. We have

ads

Hot Websites

WHY YOU SHOULD Be listed

Matt Cutts, a software engineer and former head of the web spam team at Google, stated back in 2012 that "spammy directories" are disregarded while those who "excercise editorial discretion" worth it. Even though countless business directories litter the internet, they won't all offer a positive change. Don't take unneeded risks and suggest your website to one that Google loves!

Email: liunxqq$$$126.com ($$$=@) ie websites |