CVE-2022-20119
https://notcve.org/view.php?id=CVE-2022-20119
10 May 2022 — In private_handle_t of mali_gralloc_buffer.h, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/pixel/2022-05-01 • CWE-908: Use of Uninitialized Resource •
CVE-2022-20117
https://notcve.org/view.php?id=CVE-2022-20117
10 May 2022 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/pixel/2022-05-01 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVE-2022-20115
https://notcve.org/view.php?id=CVE-2022-20115
10 May 2022 — This could lead to local information disclosure with User execution privileges needed. • https://source.android.com/security/bulletin/2022-05-01 • CWE-862: Missing Authorization •
CVE-2022-20011
https://notcve.org/view.php?id=CVE-2022-20011
10 May 2022 — In getArray of NotificationManagerService.java , there is a possible leak of one user notifications to another due to missing check. This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/2022-05-01 • CWE-862: Missing Authorization •
CVE-2022-20010
https://notcve.org/view.php?id=CVE-2022-20010
10 May 2022 — This could lead to remote information disclosure through Bluetooth with no additional execution privileges needed. • https://source.android.com/security/bulletin/2022-05-01 • CWE-125: Out-of-bounds Read •
CVE-2022-20008
https://notcve.org/view.php?id=CVE-2022-20008
10 May 2022 — This could lead to local information disclosure if reading from an SD card that triggers errors, with no additional execution privileges needed. • https://source.android.com/security/bulletin/2022-05-01 • CWE-908: Use of Uninitialized Resource •
CVE-2021-39700
https://notcve.org/view.php?id=CVE-2021-39700
10 May 2022 — This could lead to local information disclosure with no additional execution privileges needed. • https://source.android.com/security/bulletin/2022-05-01 •
CVE-2022-29140 – Windows Print Spooler Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-29140
10 May 2022 — Windows Print Spooler Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en Windows Print Spooler. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29140 •
CVE-2022-28830 – Adobe FrameMaker Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-28830
10 May 2022 — Adobe Framemaker versions 2029u8 (and earlier) and 2020u4 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Adobe Framemaker versiones 2029u8 (y anteriores) y 2020u4 (y anteriores), están afectadas por una vulnerabilidad de lectura fuera de límites que podría conll... • https://helpx.adobe.com/security/products/framemaker/apsb22-27.html • CWE-125: Out-of-bounds Read •
CVE-2022-29114 – Windows Print Spooler Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-29114
10 May 2022 — Windows Print Spooler Information Disclosure Vulnerability Una vulnerabilidad de Divulgación de Información en Windows Print Spooler. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-29114 •