Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-20437 | 1 Google | 1 Android | 2022-10-13 | N/A | 5.5 MEDIUM |
| In Messaging, There has unauthorized broadcast, this could cause Local Deny of Service.Product: AndroidVersions: Android SoCAndroid ID: A-242258929 | |||||
| CVE-2022-37998 | 1 Microsoft | 3 Windows 10, Windows 11, Windows Server 2022 | 2022-10-13 | N/A | 7.7 HIGH |
| Windows Local Session Manager (LSM) Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-37973. | |||||
| CVE-2022-37999 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-10-13 | N/A | 7.8 HIGH |
| Windows Group Policy Preference Client Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37993, CVE-2022-37994. | |||||
| CVE-2020-14129 | 1 Mi | 1 Xiaomi | 2022-10-13 | N/A | 9.8 CRITICAL |
| A logic vulnerability exists in a Xiaomi product. The vulnerability is caused by an identity verification failure, which can be exploited by an attacker who can obtain a brief elevation of privilege. | |||||
| CVE-2020-14131 | 1 Mi | 1 Xiaomi | 2022-10-13 | N/A | 9.8 CRITICAL |
| The Xiaomi Security Center expresses heartfelt thanks to ADLab of VenusTech ! At the same time, we also welcome more outstanding and professional security experts and security teams to join the Mi Security Center (MiSRC) to jointly ensure the safe access of millions of Xiaomi users worldwide Life. | |||||
| CVE-2022-20419 | 1 Google | 1 Android | 2022-10-12 | N/A | 7.8 HIGH |
| In setOptions of ActivityRecord.java, there is a possible load any arbitrary Java code into launcher process due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12L Android-13Android ID: A-237290578 | |||||
| CVE-2022-20420 | 1 Google | 1 Android | 2022-10-12 | N/A | 7.8 HIGH |
| In getBackgroundRestrictionExemptionReason of AppRestrictionController.java, there is a possible way to bypass device policy restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-238377411 | |||||
| CVE-2022-20413 | 1 Google | 1 Android | 2022-10-12 | N/A | 5.5 MEDIUM |
| In start of Threads.cpp, there is a possible way to record audio during a phone call due to a logic error in the code. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-235850634 | |||||
| CVE-2022-20415 | 1 Google | 1 Android | 2022-10-12 | N/A | 7.8 HIGH |
| In handleFullScreenIntent of StatusBarNotificationActivityStarter.java, there is a possible bypass of the restriction of starting activity from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-231322873 | |||||
| CVE-2022-20394 | 1 Google | 1 Android | 2022-10-12 | N/A | 5.0 MEDIUM |
| In getInputMethodWindowVisibleHeight of InputMethodManagerService.java, there is a possible way to determine when another app is showing an IME due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12LAndroid ID: A-204906124 | |||||
| CVE-2022-20438 | 1 Google | 1 Android | 2022-10-12 | N/A | 5.5 MEDIUM |
| In Messaging, There has unauthorized broadcast, this could cause Local Deny of Service.Product: AndroidVersions: Android SoCAndroid ID: A-242259920 | |||||
| CVE-2022-20439 | 1 Google | 1 Android | 2022-10-12 | N/A | 5.5 MEDIUM |
| In Messaging, There has unauthorized provider, this could cause Local Deny of Service.Product: AndroidVersions: Android SoCAndroid ID: A-242266172 | |||||
| CVE-2022-38044 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-10-12 | N/A | 7.8 HIGH |
| Windows CD-ROM File System Driver Remote Code Execution Vulnerability. | |||||
| CVE-2022-38041 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-10-12 | N/A | 7.5 HIGH |
| Windows Secure Channel Denial of Service Vulnerability. | |||||
| CVE-2022-38048 | 1 Microsoft | 3 365 Apps, Office, Office Long Term Servicing Channel | 2022-10-12 | N/A | 7.8 HIGH |
| Microsoft Office Remote Code Execution Vulnerability. | |||||
| CVE-2022-20440 | 1 Google | 1 Android | 2022-10-12 | N/A | 5.5 MEDIUM |
| In Messaging, There has unauthorized broadcast, this could cause Local Deny of Service.Product: AndroidVersions: Android SoCAndroid ID: A-242259918 | |||||
| CVE-2022-37986 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2022-10-12 | N/A | 7.8 HIGH |
| Windows Win32k Elevation of Privilege Vulnerability. | |||||
| CVE-2022-37984 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2022-10-12 | N/A | 7.8 HIGH |
| Windows WLAN Service Elevation of Privilege Vulnerability. | |||||
| CVE-2022-37983 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server 2019 and 1 more | 2022-10-12 | N/A | 7.8 HIGH |
| Microsoft DWM Core Library Elevation of Privilege Vulnerability. | |||||
| CVE-2022-38016 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server 2019 and 1 more | 2022-10-12 | N/A | 8.8 HIGH |
| Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability. | |||||