Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flex vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-40110
In multiple functions of MtpPacket.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
NA
CVE-2023-40112
In ippSetValueTag of ipp.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of past print jobs or other print-related information, with no additional execution privileges needed. User interaction is not needed ...
NA
CVE-2023-40113
In multiple locations, there is a possible way for apps to access cross-user message data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
NA
CVE-2023-40114
In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.
8.8
CVSSv3
CVE-2023-2457
Out of bounds write in ChromeOS Audio Server in Google Chrome on ChromeOS before 113.0.5672.114 allowed a remote malicious user to potentially exploit heap corruption via crafted audio file. (Chromium security severity: High)
Google Chrome
5.5
CVSSv3
CVE-2023-21143
In multiple functions of multiple files, there is a possible way to make the device unusable due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Andro...
Google Android 11.0
Google Android 12.0
Google Android 12.1
Google Android 13.0
8.8
CVSSv3
CVE-2023-4369
Insufficient data validation in Systems Extensions in Google Chrome on ChromeOS before 116.0.5845.120 allowed an attacker who convinced a user to install a malicious extension to bypass file restrictions via a crafted HTML page. (Chromium security severity: Medium)
Google Chrome
5.5
CVSSv3
CVE-2023-4211
A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.
Arm 5th Gen Gpu Architecture Kernel Driver
Arm Midgard
Arm Bifrost
Arm Valhall
6.7
CVSSv3
CVE-2021-4212
A potential vulnerability in the SMI callback function used in the Legacy BIOS mode driver in some Lenovo Notebook models may allow an attacker with local access and elevated privileges to execute arbitrary code.
Lenovo C340-14iml Firmware -
Lenovo C340-15iml Firmware -
Lenovo D330-10igm Firmware -
Lenovo Duet 3-10igl5 Firmware -
Lenovo E41-50 Firmware -
Lenovo Flex-14iml Firmware -
Lenovo Flex-15iml Firmware -
Lenovo Ideapad 3-14are05 Firmware -
Lenovo Ideapad 3-15are05 Firmware -
Lenovo Ideapad 3-17are05 Firmware -
Lenovo Ideapad 5-14alc05 Firmware -
Lenovo Ideapad 5-14are05 Firmware -
Lenovo Ideapad 5-15itl05 Firmware -
Lenovo Ideapad 5 Pro-14acn6 Firmware -
Lenovo Ideapad 5 Pro-14itl6 Firmware -
Lenovo Ideapad 5 Pro-16ihu6 Firmware -
Lenovo Ideapad Creator 5-15imh05 Firmware -
Lenovo Ideapad Gaming 3-15ach6 Firmware -
Lenovo Ideapad Gaming 3-15arh05 Firmware -
Lenovo Ideapad Gaming 3-15imh05 Firmware -
Lenovo L340-15irh Firmware -
Lenovo L340-15iwl Firmware -
NA
CVE-2009-0522
Adobe Flash Player 9.x prior to 9.0.159.0 and 10.x prior to 10.0.22.87 on Windows allows remote malicious users to trick a user into visiting an arbitrary URL via an unspecified manipulation of the "mouse pointer display," related to a "Clickjacking attack."
Adobe Flash Player 9.0.28
Adobe Flash Player 9.0.20.0
Adobe Flash Player
Adobe Flash Player For Linux
Adobe Flash Player 7.0.1
Adobe Flash Player 7.0.63
Adobe Flash Player 8.0
Adobe Flash Player 8.0.24.0
Adobe Flash Player 9.0.31.0
Adobe Flash Player 9.0.28.0
Adobe Flash Player 9.0.114.0
Adobe Flash Player 9.0.112.0
Adobe Flash Player 10.0.12.10
Adobe Flash Player 7.0
Adobe Flash Player 7.1.1
Adobe Flash Player 7.2
Adobe Flash Player 7.0.25
Adobe Flash Player 9.0.48.0
Adobe Flash Player 9.0.20
Adobe Flash Player 9.0.16
Adobe Air 1.5
Adobe Flash Player Cs3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »