Fallos del tipo CWE-20
4753 resultadosCVE-2022-20392HIGHIn declareDuplicatePermission of ParsedPermissionUtils.java, there is a possible way to obtain a dangerous permission without user consent dEPSS 0.1%CVE-2024-38420HIGHImproper Input Validation in HypervisorEPSS 0.1%CVE-2024-38413MEDIUMImproper Input Validation in Computer VisionEPSS 0.1%CVE-2025-20068HIGHImproper input validation in the UEFI ImcErrorHandler module for some Intel(R) reference platforms may allow an escalation of privilege. SysEPSS 0.1%CVE-2021-25500HIGHA missing input validation in HDCP LDFW prior to SMR Nov-2021 Release 1 allows attackers to overwrite TZASC allowing TEE compromise.EPSS 0.1%CVE-2023-20613MEDIUMIn ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System EPSS 0.1%CVE-2023-20612MEDIUMIn ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System EPSS 0.1%CVE-2022-23427LOWPendingIntent hijacking vulnerability in KnoxPrivacyNoticeReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media fiEPSS 0.1%CVE-2025-14963MEDIUMA vulnerability identified in the HX Agent driver file fekern.sys allowed a threat actor with local user access the ability to gain elevatedEPSS 0.1%CVE-2021-25457MEDIUMAn improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memoEPSS 0.1%CVE-2025-54641MEDIUMIssue of buffer overflow caused by insufficient data verification in the kernel acceleration module.
Impact: Successful exploitation of thisEPSS 0.1%CVE-2026-20717MEDIUMImproper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow EPSS 0.1%CVE-2026-20905MEDIUMImproper input validation for some Intel(R) QAT software drivers for Windows before version 2.6 within Ring 3: User Applications may allow aEPSS 0.1%CVE-2025-54642MEDIUMIssue of buffer overflow caused by insufficient data verification in the kernel gyroscope module.
Impact: Successful exploitation of this vuEPSS 0.1%CVE-2022-32653MEDIUMIn mtk-aie, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution EPSS 0.1%CVE-2026-21733HIGHGPU DDK - Incorrect flags validation in RGXDerivePTEProt8 can allow GPU to overwrite read-only shared memory (e.g. libc.so)EPSS 0.1%CVE-2022-32652MEDIUMIn mtk-aie, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution EPSS 0.1%CVE-2026-9987HIGHInsufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker toEPSS 0.1%CVE-2022-33715MEDIUMImproper access control and path traversal vulnerability in LauncherProvider prior to SMR Aug-2022 Release 1 allow local attacker to access EPSS 0.1%CVE-2025-26426MEDIUMIn BroadcastController.java of registerReceiverWithFeatureTraced, there is a possible way to receive broadcasts meant for the "android" packEPSS 0.1%