CVSS: 7.6EPSS: 0%CPEs: 3EXPL: 0NotCVE-2023-0001 – Secure Boot Bypass in MSM8916/APQ8016 Mobile SoC
https://notcve.org/view.php?id=NotCVE-2023-0001
A physical attacker may leverage improper protection against voltage glitching in Qualcomm’s Secure Boot implementation in chipsets MSM8916 and APQ8016 to execute arbitrary code in the device due to a badly secured hash value check. • https://cyberintel.es/cve/notCVE-2023-0001/ • CWE-1247: Improper Protection Against Voltage and Clock Glitches •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2018-9479
https://notcve.org/view.php?id=CVE-2018-9479
This could lead to remote code execution with no additional execution privileges needed. • https://source.android.com/security/bulletin/2018-09-01 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2018-9478
https://notcve.org/view.php?id=CVE-2018-9478
This could lead to remote code execution with no additional execution privileges needed. • https://source.android.com/security/bulletin/2018-09-01 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-9472
https://notcve.org/view.php?id=CVE-2018-9472
This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. • https://source.android.com/security/bulletin/2018-09-01 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-11409 – Grid View Gallery <= 1.0 - Authenticated (Editor+) PHP Object Injection
https://notcve.org/view.php?id=CVE-2024-11409
If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code. • source=cve https://plugins.trac.wordpress.org/browser/grid-view-gallery/trunk/custom-slider-short-code.php#L161 • CWE-502: Deserialization of Untrusted Data •