Falhas do tipo CWE-269

1.785 resultados
CVE-2024-27210HIGHIn policy_check of fvp.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privEPSS 0.1%CVE-2026-11103HIGHInappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level prEPSS 0.1%CVE-2026-11276MEDIUMInappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discEPSS 0.1%CVE-2025-26462HIGHIn AccessibilityServiceConnection.java, there is a possible background activity launch due to a logic error in the code. This could lead to EPSS 0.1%CVE-2025-26435HIGHIn updateState of ContentProtectionTogglePreferenceController.java, there is a possible way for a secondary user to disable the primary userEPSS 0.1%CVE-2024-40657HIGHIn addPreferencesForType of AccountTypePreferenceLoader.java, there is a possible way to disable apps for other users due to a confused depuEPSS 0.1%CVE-2024-32899HIGHIn gpu_pm_power_off_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected memory due to a race condition. This could EPSS 0.1%CVE-2024-25990MEDIUMIn pktproc_perftest_gen_rx_packet_sktbuf_mode of link_rx_pktproc.c, there is a possible out of bounds write due to a race condition. This coEPSS 0.1%CVE-2026-0046MEDIUMIn InputInterceptor of Letterbox.java, there is a possible way to trick a user into accepting a permission due to a tapjacking/overlay attacEPSS 0.1%CVE-2025-66324HIGHInput verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affeEPSS 0.1%CVE-2026-0048MEDIUMIn hide of WindowState.java, there is a possible way to trick the user into approving permissions due to a tapjacking/overlay attack. This cEPSS 0.1%CVE-2025-6182HIGHRoot Certificate InjectionEPSS 0.1%CVE-2026-0009HIGHIn multiple locations, there is a possible tapjacking due to a logic error in the code. This could lead to local escalation of privilege witEPSS 0.1%CVE-2026-0086MEDIUMIn onCreate of DisableSupervisionActivity.kt, there is a possible way to delete supervision data due to a missing null check. This could leaEPSS 0.1%CVE-2024-49742HIGHIn onCreate of NotificationAccessConfirmationActivity.java , there is a possible way to hide an app with notification access in Settings dueEPSS 0.1%CVE-2026-54099HIGHWindows-machine-config-operator: windows-machine-config-operator: wicd csr extra-organization allows privilege escalation to system:mastersEPSS 0.1%CVE-2024-34725HIGHIn DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to locaEPSS 0.1%CVE-2026-28548HIGHVulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service coEPSS 0.1%CVE-2026-0050LOWIn handleBondStateChanged of AdapterService.java, there is a possible sensitive information disclosure due to a permissions bypass. This couEPSS 0.1%CVE-2026-0089HIGHIn multiple functions of PackageInstallerService.java, there is a possible way to install unverified apps due to a missing permission check.EPSS 0.1%