Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2022
CVE-2022-27833
Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds write by integer overflow.
CVSS Score
4.4
EPSS Score
0.0
Published
2022-04-11
CVE-2022-27834
Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-2022 Release 1 allows attackers to perform malicious actions.
CVSS Score
2.9
EPSS Score
0.0
Published
2022-04-11
CVE-2022-27835
Improper boundary check in UWB firmware prior to SMR Apr-2022 Release 1 allows arbitrary memory write.
CVSS Score
7.6
EPSS Score
0.0
Published
2022-04-11
CVE-2022-27836
Improper access control and path traversal vulnerability in Storage Manager and Storage Manager Service prior to SMR Apr-2022 Release 1 allow local attackers to access arbitrary system files without a proper permission. The patch adds proper validation logic to prevent arbitrary files access.
CVSS Score
8.4
EPSS Score
0.0
Published
2022-04-11
CVE-2022-27837
A vulnerability using PendingIntent in Accessibility prior to version 12.5.3.2 in Android R(11.0) and 13.0.1.1 in Android S(12.0) allows attacker to access the file with system privilege.
CVSS Score
4.4
EPSS Score
0.003
Published
2022-04-11
CVE-2022-26092
Improper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows arbitrary code execution.
CVSS Score
7.4
EPSS Score
0.0
Published
2022-04-11
CVE-2022-26093
Null pointer dereference vulnerability in parser_irot function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
CVSS Score
5.9
EPSS Score
0.004
Published
2022-04-11
CVE-2022-26094
Null pointer dereference vulnerability in parser_auxC function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
CVSS Score
5.9
EPSS Score
0.004
Published
2022-04-11
CVE-2022-26095
Null pointer dereference vulnerability in parser_colr function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
CVSS Score
5.9
EPSS Score
0.004
Published
2022-04-11
CVE-2022-26096
Null pointer dereference vulnerability in parser_ispe function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
CVSS Score
5.9
EPSS Score
0.004
Published
2022-04-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved