| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2023-20002 | A vulnerability in Cisco TelePresence CE and RoomOS Software could allow an authenticated, local att... | | |
| CVE-2023-20003 | Cisco Business Wireless Access Points Social Login Guest User Authentication Bypass Vulnerability | | |
| CVE-2023-20004 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Write Vulnerability | | |
| CVE-2023-20005 | Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center ... | | |
| CVE-2023-20006 | A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security ... | | |
| CVE-2023-20007 | A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, ... | | |
| CVE-2023-20008 | A vulnerability in the CLI of Cisco TelePresence CE and RoomOS Software could allow an authenticated... | | |
| CVE-2023-20009 | A vulnerability in the Web UI and administrative CLI of the Cisco Secure Email Gateway (ESA) and Cis... | | |
| CVE-2023-20010 | A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unifi... | | |
| CVE-2023-20011 | Cisco Application Policy Infrastructure Controller and Cisco Cloud Network Controller Cross-Site Request Forgery Vulnerability | | |
| CVE-2023-20012 | Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability | | |
| CVE-2023-20013 | Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated,... | | |
| CVE-2023-20014 | A vulnerability in the DNS functionality of Cisco Nexus Dashboard Software could allow an unauthenti... | | |
| CVE-2023-20015 | Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability | | |
| CVE-2023-20016 | Cisco FXOS Software and UCS Manager Software Configuration Backup Static Key Vulnerability | | |
| CVE-2023-20017 | Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated,... | | |
| CVE-2023-20018 | A vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones ... | | |
| CVE-2023-20019 | A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platf... | | |
| CVE-2023-20020 | A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application Deliver... | | |
| CVE-2023-20021 | Cisco Identity Services Engine Privilege Escalation Vulnerabilities | | |
| CVE-2023-20022 | Cisco Identity Services Engine Privilege Escalation Vulnerabilities | | |
| CVE-2023-20023 | Cisco Identity Services Engine Privilege Escalation Vulnerabilities | | |
| CVE-2023-20024 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20025 | A vulnerability in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, ... | M | |
| CVE-2023-20026 | A vulnerability in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, ... | M | |
| CVE-2023-20027 | Cisco IOS XE Software Virtual Fragmentation Reassembly Denial of Service Vulnerability | | |
| CVE-2023-20028 | Cisco Secure Email Gateway, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20029 | Cisco IOS XE Software Privilege Escalation Vulnerability | | |
| CVE-2023-20030 | Cisco Identity Services Engine XML External Entity Injection Vulnerability | | |
| CVE-2023-20031 | A vulnerability in the SSL/TLS certificate handling of Snort 3 Detection Engine integration with Cis... | M | |
| CVE-2023-20032 | On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vu... | | |
| CVE-2023-20033 | A vulnerability in Cisco IOS XE Software for Cisco Catalyst 3650 and Catalyst 3850 Series Switches c... | | |
| CVE-2023-20034 | Vulnerability in the Elasticsearch database used in the of Cisco SD-WAN vManage software could allow... | S | |
| CVE-2023-20035 | Cisco IOS XE SD-WAN Software Command Injection Vulnerability | | |
| CVE-2023-20036 | Cisco Industrial Network Director Command Injection Vulnerability | | |
| CVE-2023-20037 | A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker t... | | |
| CVE-2023-20038 | A vulnerability in the monitoring application of Cisco Industrial Network Director could allow an au... | | |
| CVE-2023-20039 | Cisco Industrial Network Director File Permissions | | |
| CVE-2023-20040 | A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow an a... | | |
| CVE-2023-20041 | Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center ... | | |
| CVE-2023-20042 | A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Softwar... | | |
| CVE-2023-20043 | A vulnerability in Cisco CX Cloud Agent of could allow an authenticated, local attacker to elevate t... | | |
| CVE-2023-20044 | A vulnerability in Cisco CX Cloud Agent of could allow an authenticated, local attacker to elevate t... | | |
| CVE-2023-20045 | A vulnerability in the web-based management interface of Cisco Small Business RV160 and RV260 Series... | | |
| CVE-2023-20046 | A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an ... | | |
| CVE-2023-20047 | A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco Webex Room Phone and Ci... | | |
| CVE-2023-20048 | A vulnerability in the web services interface of Cisco Firepower Management Center (FMC) Software co... | | |
| CVE-2023-20049 | Cisco IOS XR Software for ASR 9000 Series Routers Bidirectional Forwarding Detection Denial of Service Vulnerability | | |
| CVE-2023-20050 | Cisco NX-OS Software CLI Command Injection Vulnerability | | |
| CVE-2023-20051 | Cisco Packet Data Network Gateway IPsec ICMP Denial of Service Vulnerability | | |
| CVE-2023-20052 | On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vu... | | |
| CVE-2023-20053 | A vulnerability in the web-based management interface of Cisco Nexus Dashboard could allow an unauth... | | |
| CVE-2023-20055 | Cisco DNA Center Privilege Escalation Vulnerability | | |
| CVE-2023-20056 | Cisco Access Point Software Denial of Service Vulnerability | | |
| CVE-2023-20057 | A vulnerability in the URL filtering mechanism of Cisco AsyncOS Software for Cisco Email Security Ap... | | |
| CVE-2023-20058 | A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could all... | | |
| CVE-2023-20059 | Cisco DNA Center Information Disclosure Vulnerability | | |
| CVE-2023-20060 | Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability | | |
| CVE-2023-20061 | Cisco Unified Intelligence Center Vulnerabilities | | |
| CVE-2023-20062 | Cisco Unified Intelligence Center Vulnerabilities | | |
| CVE-2023-20063 | Cisco Cisco Firepower Threat Defense Software and Cisco Firepower Management Center Code Injection Vulnerability | | |
| CVE-2023-20064 | Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability | | |
| CVE-2023-20065 | A vulnerability in the Cisco IOx application hosting subsystem of Cisco IOS XE Software could allow ... | | |
| CVE-2023-20066 | Cisco IOS XE Software Web UI Path Traversal Vulnerability | | |
| CVE-2023-20067 | Cisco IOS XE Software for Wireless LAN Controllers HTTP Client Profiling Denial of Service Vulnerability | | |
| CVE-2023-20068 | Cisco Prime Infrastructure Reflected Cross-Site Scripting Vulnerability | | |
| CVE-2023-20069 | Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability | | |
| CVE-2023-20070 | A vulnerability in the TLS 1.3 implementation of the Cisco Firepower Threat Defense (FTD) Software c... | | |
| CVE-2023-20071 | Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could all... | | |
| CVE-2023-20072 | Cisco IOS XE Software Fragmented Tunnel Protocol Packet Denial of Service Vulnerability | | |
| CVE-2023-20073 | Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Arbitrary File Upload Vulnerability | | |
| CVE-2023-20074 | Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center ... | | |
| CVE-2023-20075 | Vulnerability in the CLI of Cisco Secure Email Gateway could allow an authenticated, remote attacker... | | |
| CVE-2023-20076 | Cisco IOx Application Hosting Environment Command Injection Vulnerability | | |
| CVE-2023-20077 | Cisco Identity Services Engine Arbitrary File Download Vulnerabilities | | |
| CVE-2023-20078 | Cisco IP Phone 6800, 7800, 7900, and 8800 Series Web UI Vulnerabilities | | |
| CVE-2023-20079 | Cisco IP Phone 6800, 7800, 7900, and 8800 Series Web UI Vulnerabilities | | |
| CVE-2023-20080 | Cisco IOS and IOS XE Software IPv6 DHCP (DHCPv6) Relay and Server Denial of Service Vulnerability | | |
| CVE-2023-20081 | Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IPv6 DHCP (DHCPv6) Client Denial of Service Vulnerability | | |
| CVE-2023-20082 | Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches Secure Boot Bypass Vulnerability | | |
| CVE-2023-20083 | A vulnerability in ICMPv6 inspection when configured with the Snort 2 detection engine for Cisco Fir... | | |
| CVE-2023-20084 | A vulnerability in the endpoint software of Cisco Secure Endpoint for Windows could allow an authent... | | |
| CVE-2023-20085 | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could ... | | |
| CVE-2023-20086 | A vulnerability in ICMPv6 processing of Cisco Adaptive Security Appliance (ASA) Software and Cisco F... | | |
| CVE-2023-20087 | Cisco Identity Services Engine Arbitrary File Download Vulnerabilities | | |
| CVE-2023-20088 | Cisco Finesse Reverse Proxy VPN-less Access to Finesse Desktop Denial of Service Vulnerability | | |
| CVE-2023-20089 | Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability | M | |
| CVE-2023-20090 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Privilege Escalation Vulnerability | | |
| CVE-2023-20091 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability | | |
| CVE-2023-20092 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability | | |
| CVE-2023-20093 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability | | |
| CVE-2023-20094 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability | | |
| CVE-2023-20095 | A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software... | | |
| CVE-2023-20096 | Cisco Unified Contact Center Express Stored Cross-Site Scripting Vulnerability | | |
| CVE-2023-20097 | Cisco Access Point Software Command Injection Vulnerability | | |
| CVE-2023-20098 | A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attac... | | |
| CVE-2023-20100 | Cisco IOS XE Software for Wireless LAN Controllers CAPWAP Join Denial of Service Vulnerability | | |
| CVE-2023-20101 | A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log ... | | |
| CVE-2023-20102 | Cisco Secure Network Analytics Remote Code Execution Vulnerability | | |
| CVE-2023-20103 | Cisco Secure Network Analytics Remote Code Execution Vulnerability | | |
| CVE-2023-20104 | Cisco Webex App for Web Cross-Site Scripting Vulnerability | | |
| CVE-2023-20105 | A vulnerability in the change password functionality of Cisco Expressway Series and Cisco TelePresen... | | |
| CVE-2023-20106 | Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities | | |
| CVE-2023-20107 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Low-Entropy Keys Vulnerability | | |
| CVE-2023-20108 | A vulnerability in the XCP Authentication Service of the Cisco Unified Communications Manager IM &am... | | |
| CVE-2023-20109 | A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software a... | KEV | |
| CVE-2023-20110 | Cisco Smart Software Manager On-Prem SQL Injection Vulnerability | | |
| CVE-2023-20111 | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could ... | | |
| CVE-2023-20112 | Cisco Access Point Software Association Request Denial of Service Vulnerability | | |
| CVE-2023-20113 | Cisco SD-WAN vManage Software Cross-Site Request Forgery Vulnerability | | |
| CVE-2023-20114 | A vulnerability in the file download feature of Cisco Firepower Management Center (FMC) Software cou... | | |
| CVE-2023-20115 | A vulnerability in the SFTP server implementation for Cisco Nexus 3000 Series Switches and 9000 Seri... | | |
| CVE-2023-20116 | A vulnerability in the Administrative XML Web Service (AXL) API of Cisco Unified Communications Mana... | | |
| CVE-2023-20117 | Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities | | |
| CVE-2023-20118 | A vulnerability in the web-based management interface of Cisco Small Business Routers RV016, RV042, ... | KEV M | |
| CVE-2023-20119 | A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Ema... | | |
| CVE-2023-20120 | Cisco Secure Email Gateway, Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20121 | Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities | | |
| CVE-2023-20122 | Cisco Evolved Programmable Network Manager, Cisco Identity Services Engine, and Cisco Prime Infrastructure Command Injection Vulnerabilities | | |
| CVE-2023-20123 | Cisco Duo Authentication for macOS and Duo Authentication for Windows Logon Offline Credentials Replay Vulnerability | | |
| CVE-2023-20124 | Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Remote Command Execution Vulnerability | | |
| CVE-2023-20125 | Cisco BroadWorks Network Server TCP Denial of Service Vulnerability | | |
| CVE-2023-20126 | Cisco SPA112 2-Port Phone Adapters Remote Command Execution Vulnerability | | |
| CVE-2023-20127 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities | | |
| CVE-2023-20128 | Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities | | |
| CVE-2023-20129 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities | | |
| CVE-2023-20130 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities | | |
| CVE-2023-20131 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Vulnerabilities | | |
| CVE-2023-20132 | Cisco Webex Meetings Web UI Vulnerabilities | | |
| CVE-2023-20133 | A vulnerability in the web interface of Cisco Webex Meetings could allow an authenticated, remote at... | | |
| CVE-2023-20134 | Cisco Webex Meetings Web UI Vulnerabilities | | |
| CVE-2023-20135 | A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated, loc... | | |
| CVE-2023-20136 | A vulnerability in the OpenAPI of Cisco Secure Workload could allow an authenticated, remote attacke... | | |
| CVE-2023-20137 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20138 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20139 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20140 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20141 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20142 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20143 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20144 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20145 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20146 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20147 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20148 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20149 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20150 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20151 | Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities | | |
| CVE-2023-20152 | Cisco Identity Services Engine Command Injection Vulnerabilities | | |
| CVE-2023-20153 | Cisco Identity Services Engine Command Injection Vulnerabilities | | |
| CVE-2023-20154 | Cisco Modeling Labs External Authentication Bypass Vulnerability | | |
| CVE-2023-20155 | A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow an ... | | |
| CVE-2023-20156 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20157 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20158 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20159 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20160 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20161 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20162 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20163 | Cisco Identity Services Engine Command Injection Vulnerabilities | | |
| CVE-2023-20164 | Cisco Identity Services Engine Command Injection Vulnerabilities | | |
| CVE-2023-20166 | Cisco Identity Services Engine Path Traversal Vulnerabilities | | |
| CVE-2023-20167 | Cisco Identity Services Engine Path Traversal Vulnerabilities | | |
| CVE-2023-20168 | A vulnerability in TACACS+ and RADIUS remote authentication for Cisco NX-OS Software could allow an ... | | |
| CVE-2023-20169 | A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco NX-OS So... | | |
| CVE-2023-20170 | A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker to ... | | |
| CVE-2023-20171 | Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities | | |
| CVE-2023-20172 | Cisco Identity Services Engine Arbitrary File Delete and File Read Vulnerabilities | | |
| CVE-2023-20173 | Cisco Identity Services Engine XML External Entity Injection Vulnerabilities | | |
| CVE-2023-20174 | Cisco Identity Services Engine XML External Entity Injection Vulnerabilities | | |
| CVE-2023-20175 | A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker to ... | | |
| CVE-2023-20176 | A vulnerability in the networking component of Cisco access point (AP) software could allow an unaut... | | |
| CVE-2023-20177 | A vulnerability in the SSL file policy implementation of Cisco Firepower Threat Defense (FTD) Softwa... | | |
| CVE-2023-20178 | A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for... | | |
| CVE-2023-20179 | A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager, formerly Cis... | | |
| CVE-2023-20180 | A vulnerability in the web interface of Cisco Webex Meetings could allow an unauthenticated, remote ... | | |
| CVE-2023-20181 | A vulnerability in the web-based management interface of Cisco Small Business SPA500 Series IP Phone... | | |
| CVE-2023-20182 | Cisco DNA Center Software API Vulnerabilities | | |
| CVE-2023-20183 | Cisco DNA Center Software API Vulnerabilities | | |
| CVE-2023-20184 | Cisco DNA Center Software API Vulnerabilities | | |
| CVE-2023-20185 | A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series F... | | |
| CVE-2023-20186 | A vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Soft... | | |
| CVE-2023-20187 | A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software fo... | M | |
| CVE-2023-20188 | A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switc... | | |
| CVE-2023-20189 | Cisco Small Business Series Switches Buffer Overflow Vulnerabilities | | |
| CVE-2023-20190 | A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Softwar... | E | |
| CVE-2023-20191 | A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direct... | | |
| CVE-2023-20192 | Cisco Expressway Series and Cisco TelePresence Video Communication Server Privilege Escalation Vulnerabilities | | |
| CVE-2023-20193 | A vulnerability in the Embedded Service Router (ESR) of Cisco ISE could allow an authenticated, loca... | | |
| CVE-2023-20194 | A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote attacker to read ar... | | |
| CVE-2023-20195 | Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary f... | | |
| CVE-2023-20196 | Two vulnerabilities in Cisco ISE could allow an authenticated, remote attacker to upload arbitrary f... | | |
| CVE-2023-20197 | A vulnerability in the filesystem image parser for Hierarchical File System Plus (HFS+) of ClamAV co... | | |
| CVE-2023-20198 | Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI ... | KEV M | |
| CVE-2023-20199 | Cisco Duo Two-Factor Authentication for macOS Authentication Bypass Vulnerability | | |
| CVE-2023-20200 | A vulnerability in the Simple Network Management Protocol (SNMP) service of Cisco FXOS Software for ... | | |
| CVE-2023-20201 | Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cis... | | |
| CVE-2023-20202 | A vulnerability in the Wireless Network Control daemon (wncd) of Cisco IOS XE Software for Wireless ... | | |
| CVE-2023-20203 | Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cis... | | |
| CVE-2023-20204 | A vulnerability in the web-based management interface of Cisco BroadWorks CommPilot Application Soft... | | |
| CVE-2023-20205 | Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cis... | | |
| CVE-2023-20206 | Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center ... | | |
| CVE-2023-20207 | A vulnerability in the logging component of Cisco Duo Authentication Proxy could allow an authentica... | | |
| CVE-2023-20208 | A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, rem... | | |
| CVE-2023-20209 | A vulnerability in the web-based management interface of Cisco Expressway Series and Cisco TelePrese... | | |
| CVE-2023-20210 | A vulnerability in Cisco BroadWorks could allow an authenticated, local attacker to elevate privileg... | | |
| CVE-2023-20211 | A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unifi... | | |
| CVE-2023-20212 | A vulnerability in the AutoIt module of ClamAV could allow an unauthenticated, remote attacker to ca... | | |
| CVE-2023-20213 | A vulnerability in the CDP processing feature of Cisco ISE could allow an unauthenticated, adjacent ... | | |
| CVE-2023-20214 | A vulnerability in the request authentication validation for the REST API of Cisco SD-WAN vManage so... | | |
| CVE-2023-20215 | A vulnerability in the scanning engines of Cisco AsyncOS Software for Cisco Secure Web Appliance cou... | | |
| CVE-2023-20216 | A vulnerability in the privilege management functionality of all Cisco BroadWorks server types could... | | |
| CVE-2023-20217 | A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation ty... | | |
| CVE-2023-20218 | A vulnerability in web-based management interface of Cisco SPA500 Series Analog Telephone Adapters (... | | |
| CVE-2023-20219 | Multiple vulnerabilities in the web management interface of Cisco Firepower Management Center (FMC) ... | | |
| CVE-2023-20220 | Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center ... | | |
| CVE-2023-20221 | A vulnerability in the web-based management interface of Cisco IP Phone 6800, 7800, and 8800 Series ... | | |
| CVE-2023-20222 | A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolve... | | |
| CVE-2023-20223 | A vulnerability in Cisco DNA Center could allow an unauthenticated, remote attacker to read and modi... | | |
| CVE-2023-20224 | A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent, Virtual Appliance installation ty... | | |
| CVE-2023-20226 | A vulnerability in Application Quality of Experience (AppQoE) and Unified Threat Defense (UTD) on Ci... | | |
| CVE-2023-20227 | A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allo... | M | |
| CVE-2023-20228 | A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC... | | |
| CVE-2023-20229 | A vulnerability in the CryptoService function of Cisco Duo Device Health Application for Windows cou... | S | |
| CVE-2023-20230 | A vulnerability in the restricted security domain implementation of Cisco Application Policy Infrast... | | |
| CVE-2023-20231 | A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker... | | |
| CVE-2023-20232 | A vulnerability in the Tomcat implementation for Cisco Unified Contact Center Express (Unified CCX) ... | S | |
| CVE-2023-20233 | A vulnerability in the Connectivity Fault Management (CFM) feature of Cisco IOS XR Software could al... | | |
| CVE-2023-20234 | A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to cr... | | |
| CVE-2023-20235 | A vulnerability in the on-device application development workflow feature for the Cisco IOx applicat... | | |
| CVE-2023-20236 | A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, loc... | | |
| CVE-2023-20237 | A vulnerability in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attac... | S | |
| CVE-2023-20238 | A vulnerability in the single sign-on (SSO) implementation of Cisco BroadWorks Application Delivery ... | | |
| CVE-2023-20239 | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.... | R | |
| CVE-2023-20240 | Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client... | | |
| CVE-2023-20241 | Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client... | | |
| CVE-2023-20242 | A vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unifi... | | |
| CVE-2023-20243 | A vulnerability in the RADIUS message processing feature of Cisco Identity Services Engine (ISE) cou... | | |
| CVE-2023-20244 | A vulnerability in the internal packet processing of Cisco Firepower Threat Defense (FTD) Software f... | | |
| CVE-2023-20245 | Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA)... | | |
| CVE-2023-20246 | Multiple Cisco products are affected by a vulnerability in Snort access control policies that could ... | | |
| CVE-2023-20247 | A vulnerability in the remote access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Soft... | | |
| CVE-2023-20248 | A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) S... | | |
| CVE-2023-20249 | A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) S... | | |
| CVE-2023-20250 | A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W,... | | |
| CVE-2023-20251 | A vulnerability in the memory buffer of Cisco Wireless LAN Controller (WLC) AireOS Software could al... | | |
| CVE-2023-20252 | A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manag... | | |
| CVE-2023-20253 | A vulnerability in the command line interface (cli) management interface of Cisco SD-WAN vManage cou... | | |
| CVE-2023-20254 | A vulnerability in the session management system of the Cisco Catalyst SD-WAN Manager multi-tenant f... | S | |
| CVE-2023-20255 | A vulnerability in an API of the Web Bridge feature of Cisco Meeting Server could allow an unauthent... | | |
| CVE-2023-20256 | Multiple vulnerabilities in the per-user-override feature of Cisco Adaptive Security Appliance (ASA)... | | |
| CVE-2023-20257 | A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an a... | | |
| CVE-2023-20258 | A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an a... | | |
| CVE-2023-20259 | A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an ... | | |
| CVE-2023-20260 | A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable ... | | |
| CVE-2023-20261 | A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote ... | | |
| CVE-2023-20262 | A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, ... | | |
| CVE-2023-20263 | A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could allo... | | |
| CVE-2023-20264 | A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 single sign-o... | | |
| CVE-2023-20265 | A vulnerability in the web-based management interface of a small subset of Cisco IP Phones could all... | | |
| CVE-2023-20266 | A vulnerability in Cisco Emergency Responder, Cisco Unified Communications Manager (Unified CM), Cis... | | |
| CVE-2023-20267 | A vulnerability in the IP geolocation rules of Snort 3 could allow an unauthenticated, remote attack... | | |
| CVE-2023-20268 | Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability | | |
| CVE-2023-20269 | A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance (ASA) Software... | KEV | |
| CVE-2023-20270 | A vulnerability in the interaction between the Server Message Block (SMB) protocol preprocessor and ... | | |
| CVE-2023-20271 | A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolve... | | |
| CVE-2023-20272 | A vulnerability in the web-based management interface of Cisco Identity Services Engine could allow ... | | |
| CVE-2023-20273 | A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote ... | KEV | |
| CVE-2023-20274 | A vulnerability in the installer script of Cisco AppDynamics PHP Agent could allow an authenticated,... | | |
| CVE-2023-20275 | A vulnerability in the AnyConnect SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Softwar... | | |
| CVE-2023-20507 | An integer overflow in the ASP could allow a privileged attacker to perform an out-of-bounds write, ... | | |
| CVE-2023-20508 | Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds wri... | | |
| CVE-2023-20509 | An insufficient DRAM address validation in PMFW may allow a privileged attacker to perform a DMA rea... | | |
| CVE-2023-20510 | An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an inva... | | |
| CVE-2023-20512 | A hardcoded AES key in PMFW may result in a privileged attacker gaining access to the key, potenti... | | |
| CVE-2023-20513 | An insufficient bounds check in PMFW (Power Management Firmware) may allow an attacker to utilize a ... | | |
| CVE-2023-20515 | Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to co... | | |
| CVE-2023-20518 | Incomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker wi... | | |
| CVE-2023-20519 | A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious ... | | |
| CVE-2023-20520 | Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return addre... | | |
| CVE-2023-20521 | TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM recor... | | |
| CVE-2023-20522 | Insufficient input validation in ASP may allow an attacker with a malicious BIOS to potentially caus... | | |
| CVE-2023-20523 | TOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leadi... | | |
| CVE-2023-20524 | An attacker with a compromised ASP could possibly send malformed commands to an ASP on another CPU, ... | | |
| CVE-2023-20525 | Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to read ... | | |
| CVE-2023-20526 | Insufficient input validation in the ASP Bootloader may enable a privileged attacker with physical a... | | |
| CVE-2023-20527 | Improper syscall input validation in the ASP Bootloader may allow a privileged attacker to read memo... | | |
| CVE-2023-20528 | Insufficient input validation in the SMU may allow a physical attacker to exfiltrate SMU memory cont... | | |
| CVE-2023-20529 | Insufficient bound checks in the SMU may allow an attacker to update the from/to address space to an... | | |
| CVE-2023-20530 | Insufficient input validation of BIOS mailbox messages in SMU may result in out-of-bounds memory rea... | | |
| CVE-2023-20531 | Insufficient bound checks in the SMU may allow an attacker to update the SRAM from/to address space ... | | |
| CVE-2023-20532 | Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potenti... | | |
| CVE-2023-20533 | Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/w... | | |
| CVE-2023-20555 | Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by... | | |
| CVE-2023-20556 | S | ||
| CVE-2023-20558 | Insufficient control flow management in AmdCpmOemSmm may allow a privileged attacker to tamper with... | | |
| CVE-2023-20559 | Insufficient control flow management in AmdCpmGpioInitSmm may allow a privileged attacker to tamp... | | |
| CVE-2023-20560 | | ||
| CVE-2023-20561 | S | ||
| CVE-2023-20562 | S | ||
| CVE-2023-20563 | Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially e... | | |
| CVE-2023-20564 | | ||
| CVE-2023-20565 | Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially e... | | |
| CVE-2023-20566 | Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise ... | | |
| CVE-2023-20567 | Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attac... | | |
| CVE-2023-20568 | Improper signature verification of RadeonTM RX Vega M Graphics driver for Windows may allow an attac... | | |
| CVE-2023-20569 | A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the retur... | E | |
| CVE-2023-20570 | Insufficient verification of data authenticity in the configuration state machine may allow a local ... | | |
| CVE-2023-20571 | A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user... | | |
| CVE-2023-20573 | Debug Exception Delivery in Secure Nested Paging | | |
| CVE-2023-20575 | A potential power side-channel vulnerability in some AMD processors may allow an authenticated atta... | | |
| CVE-2023-20578 | A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access t... | | |
| CVE-2023-20579 | Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel mode) ... | | |
| CVE-2023-20581 | Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potential... | | |
| CVE-2023-20582 | Improper handling of invalid nested page table entries in the IOMMU may allow a privileged attacker ... | | |
| CVE-2023-20583 | Software based Power Side Channel on AMD CPUs | | |
| CVE-2023-20584 | IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), wh... | | |
| CVE-2023-20586 | Radeon™ Software Crimson ReLive Edition | | |
| CVE-2023-20587 | Improper Access Control in System Management Mode (SMM) may allow an attacker access to the SPI flas... | | |
| CVE-2023-20588 | Speculative Leaks | | |
| CVE-2023-20589 | fTPM Voltage Fault Injection | | |
| CVE-2023-20591 | Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configura... | | |
| CVE-2023-20592 | Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with ... | | |
| CVE-2023-20593 | An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to ... | E S | |
| CVE-2023-20594 | Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitiv... | | |
| CVE-2023-20596 | Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler... | | |
| CVE-2023-20597 | Improper initialization of variables in the DXE driver may allow a privileged user to leak sensit... | | |
| CVE-2023-20598 | An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated at... | | |
| CVE-2023-20602 | In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local... | | |
| CVE-2023-20604 | In ged, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20605 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20606 | In apusys, there is a possible out of bounds read due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20607 | In ccu, there is a possible memory corruption due to a race condition. This could lead to local esca... | | |
| CVE-2023-20608 | In display drm, there is a possible use after free due to a race condition. This could lead to local... | | |
| CVE-2023-20609 | In ccu, there is a possible out of bounds read due to a logic error. This could lead to local inform... | | |
| CVE-2023-20610 | In display drm, there is a possible memory corruption due to a race condition. This could lead to lo... | | |
| CVE-2023-20611 | In gpu, there is a possible use after free due to a race condition. This could lead to local escalat... | | |
| CVE-2023-20612 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20613 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20614 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20615 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20616 | In ion, there is a possible out of bounds read due to type confusion. This could lead to local escal... | | |
| CVE-2023-20618 | In vcu, there is a possible memory corruption due to improper locking. This could lead to local esca... | | |
| CVE-2023-20619 | In vcu, there is a possible memory corruption due to improper locking. This could lead to local esca... | | |
| CVE-2023-20620 | In adsp, there is a possible escalation of privilege due to a logic error. This could lead to local ... | | |
| CVE-2023-20621 | In tinysys, there is a possible out of bounds write due to a missing bounds check. This could lead t... | | |
| CVE-2023-20623 | In ion, there is a possible escalation of privilege due to improper locking. This could lead to loca... | | |
| CVE-2023-20624 | In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead to... | | |
| CVE-2023-20625 | In adsp, there is a possible double free due to a race condition. This could lead to local escalatio... | | |
| CVE-2023-20626 | In msdc, there is a possible out of bounds write due to an incorrect bounds check. This could lead t... | | |
| CVE-2023-20627 | In pqframework, there is a possible out of bounds write due to a missing bounds check. This could le... | | |
| CVE-2023-20628 | In thermal, there is a possible memory corruption due to an uncaught exception. This could lead to l... | | |
| CVE-2023-20630 | In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20632 | In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20633 | In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20634 | In widevine, there is a possible out of bounds write due to improper input validation. This could le... | | |
| CVE-2023-20635 | In keyinstall, there is a possible information disclosure due to an integer overflow. This could lea... | | |
| CVE-2023-20636 | In display drm, there is a possible out of bounds write due to a missing bounds check. This could le... | | |
| CVE-2023-20637 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20638 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20639 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20640 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20641 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20642 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20643 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20644 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20645 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20646 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20647 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20648 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20649 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20650 | In apu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20651 | In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20652 | In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lea... | | |
| CVE-2023-20653 | In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lea... | | |
| CVE-2023-20654 | In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lea... | | |
| CVE-2023-20655 | In mmsdk, there is a possible escalation of privilege due to a parcel format mismatch. This could le... | | |
| CVE-2023-20656 | In geniezone, there is a possible out of bounds write due to a logic error. This could lead to local... | | |
| CVE-2023-20657 | In mtee, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20658 | In isp, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20659 | In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20660 | In wlan, there is a possible out of bounds read due to an integer overflow. This could lead to local... | | |
| CVE-2023-20661 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca... | | |
| CVE-2023-20662 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca... | | |
| CVE-2023-20663 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca... | | |
| CVE-2023-20664 | In gz, there is a possible double free due to a use after free. This could lead to local escalation ... | | |
| CVE-2023-20665 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20666 | In display drm, there is a possible out of bounds write due to a missing bounds check. This could le... | | |
| CVE-2023-20670 | In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20673 | In vcu, there is a possible memory corruption due to type confusion. This could lead to local escala... | | |
| CVE-2023-20674 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20675 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20676 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20677 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20679 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20680 | In adsp, there is a possible out of bounds write due to improper input validation. This could lead t... | | |
| CVE-2023-20681 | In adsp, there is a possible out of bounds write due to improper input validation. This could lead t... | | |
| CVE-2023-20682 | In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to loca... | | |
| CVE-2023-20684 | In vdec, there is a possible use after free due to a race condition. This could lead to local escala... | | |
| CVE-2023-20685 | In vdec, there is a possible use after free due to a race condition. This could lead to local escala... | | |
| CVE-2023-20686 | In display drm, there is a possible double free due to a race condition. This could lead to local es... | | |
| CVE-2023-20687 | In display drm, there is a possible double free due to a race condition. This could lead to local es... | | |
| CVE-2023-20688 | In power, there is a possible out of bounds read due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20689 | In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remo... | | |
| CVE-2023-20690 | In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remo... | | |
| CVE-2023-20691 | In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remo... | | |
| CVE-2023-20692 | In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to re... | | |
| CVE-2023-20693 | In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to re... | | |
| CVE-2023-20694 | In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead... | | |
| CVE-2023-20695 | In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead... | | |
| CVE-2023-20696 | In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead... | | |
| CVE-2023-20697 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20698 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20699 | In adsp, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20700 | In widevine, there is a possible out of bounds write due to a logic error. This could lead to local ... | | |
| CVE-2023-20701 | In widevine, there is a possible out of bounds write due to a logic error. This could lead to local ... | | |
| CVE-2023-20702 | In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead... | | |
| CVE-2023-20703 | In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20704 | In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20705 | In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20706 | In apu, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20707 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20708 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20709 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20710 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20711 | In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead... | | |
| CVE-2023-20712 | In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20715 | In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20716 | In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20717 | In vcu, there is a possible leak of dma buffer due to a race condition. This could lead to local inf... | | |
| CVE-2023-20718 | In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20719 | In pqframework, there is a possible out of bounds read due to a missing bounds check. This could lea... | | |
| CVE-2023-20720 | In pqframework, there is a possible out of bounds read due to a missing bounds check. This could lea... | | |
| CVE-2023-20721 | In isp, there is a possible out of bounds write due to improper input validation. This could lead to... | | |
| CVE-2023-20722 | In m4u, there is a possible out of bounds write due to improper input validation. This could lead to... | | |
| CVE-2023-20723 | In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead ... | | |
| CVE-2023-20724 | In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead ... | | |
| CVE-2023-20725 | In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead... | | |
| CVE-2023-20726 | In mnld, there is a possible leak of GPS location due to a missing permission check. This could lead... | | |
| CVE-2023-20727 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20728 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20729 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20730 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20731 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20732 | In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20733 | In vcu, there is a possible use after free due to improper locking. This could lead to local escalat... | | |
| CVE-2023-20734 | In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20735 | In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20736 | In vcu, there is a possible out of bounds write due to a race condition. This could lead to local es... | | |
| CVE-2023-20737 | In vcu, there is a possible use after free due to improper locking. This could lead to local escalat... | | |
| CVE-2023-20738 | In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20739 | In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalat... | | |
| CVE-2023-20740 | In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalat... | | |
| CVE-2023-20741 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20742 | In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20743 | In vcu, there is a possible out of bounds write due to improper locking. This could lead to local es... | | |
| CVE-2023-20744 | In vcu, there is a possible use after free due to a logic error. This could lead to local escalation... | | |
| CVE-2023-20745 | In vcu, there is a possible out of bounds write due to improper locking. This could lead to local es... | | |
| CVE-2023-20746 | In vcu, there is a possible out of bounds write due to improper locking. This could lead to local es... | | |
| CVE-2023-20747 | In vcu, there is a possible memory corruption due to type confusion. This could lead to local denial... | | |
| CVE-2023-20748 | In display, there is a possible out of bounds read due to a missing bounds check. This could lead to... | | |
| CVE-2023-20749 | In swpm, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20750 | In swpm, there is a possible out of bounds write due to a race condition. This could lead to local i... | | |
| CVE-2023-20751 | In keymange, there is a possible out of bounds write due to a missing bounds check. This could lead ... | | |
| CVE-2023-20752 | In keymange, there is a possible out of bounds write due to a missing bounds check. This could lead ... | | |
| CVE-2023-20753 | In rpmb, there is a possible out of bounds write due to a logic error. This could lead to local esca... | | |
| CVE-2023-20754 | In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead t... | | |
| CVE-2023-20755 | In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead t... | | |
| CVE-2023-20756 | In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead t... | | |
| CVE-2023-20757 | In cmdq, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20758 | In cmdq, there is a possible memory corruption due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20759 | In cmdq, there is a possible memory corruption due to a missing bounds check. This could lead to loc... | | |
| CVE-2023-20760 | In apu, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20761 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20766 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20767 | In pqframework, there is a possible out of bounds write due to a missing bounds check. This could le... | | |
| CVE-2023-20768 | In ion, there is a possible out of bounds read due to type confusion. This could lead to local escal... | | |
| CVE-2023-20771 | In display, there is a possible memory corruption due to a race condition. This could lead to local ... | | |
| CVE-2023-20772 | In vow, there is a possible escalation of privilege due to a missing permission check. This could le... | | |
| CVE-2023-20773 | In vow, there is a possible escalation of privilege due to a missing permission check. This could le... | | |
| CVE-2023-20774 | In display, there is a possible out of bounds read due to a missing bounds check. This could lead to... | | |
| CVE-2023-20775 | In display, there is a possible out of bounds write due to a missing bounds check. This could lead t... | | |
| CVE-2023-20780 | In keyinstall, there is a possible information disclosure due to a missing bounds check. This could ... | | |
| CVE-2023-20781 | In keyinstall, there is a possible memory corruption due to a missing bounds check. This could lead ... | | |
| CVE-2023-20782 | In keyinstall, there is a possible information disclosure due to a missing bounds check. This could ... | | |
| CVE-2023-20783 | In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lea... | | |
| CVE-2023-20784 | In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lea... | | |
| CVE-2023-20785 | In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20786 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20787 | In thermal, there is a possible use after free due to a race condition. This could lead to local esc... | | |
| CVE-2023-20788 | In thermal, there is a possible use after free due to a race condition. This could lead to local esc... | | |
| CVE-2023-20789 | In jpeg, there is a possible information disclosure due to a missing bounds check. This could lead t... | | |
| CVE-2023-20790 | In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20793 | In apu, there is a possible memory corruption due to a missing bounds check. This could lead to loca... | | |
| CVE-2023-20795 | In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20796 | In power, there is a possible memory corruption due to an incorrect bounds check. This could lead to... | | |
| CVE-2023-20797 | In camera middleware, there is a possible out of bounds write due to a missing bounds check. This co... | | |
| CVE-2023-20798 | In pda, there is a possible out of bounds read due to an incorrect calculation of buffer size. This ... | | |
| CVE-2023-20800 | In imgsys, there is a possible system crash due to a mssing ptr check. This could lead to local esca... | | |
| CVE-2023-20801 | In imgsys, there is a possible use after free due to a race condition. This could lead to local esca... | | |
| CVE-2023-20802 | In imgsys, there is a possible memory corruption due to improper input validation. This could lead t... | | |
| CVE-2023-20803 | In imgsys, there is a possible memory corruption due to improper input validation. This could lead t... | | |
| CVE-2023-20804 | In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to... | | |
| CVE-2023-20805 | In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to... | | |
| CVE-2023-20806 | In hcp, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20807 | In dpe, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20808 | In OPTEE, there is a possible out of bounds write due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20809 | In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to l... | | |
| CVE-2023-20810 | In IOMMU, there is a possible information disclosure due to improper input validation. This could le... | | |
| CVE-2023-20811 | In IOMMU, there is a possible out of bounds write due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20812 | In wlan driver, there is a possible out of bounds write due to improper input validation. This could... | | |
| CVE-2023-20813 | In wlan service, there is a possible out of bounds read due to improper input validation. This could... | | |
| CVE-2023-20814 | In wlan service, there is a possible out of bounds write due to improper input validation. This coul... | | |
| CVE-2023-20815 | In wlan service, there is a possible out of bounds write due to improper input validation. This coul... | | |
| CVE-2023-20816 | In wlan service, there is a possible out of bounds write due to improper input validation. This coul... | | |
| CVE-2023-20817 | In wlan service, there is a possible out of bounds write due to improper input validation. This coul... | | |
| CVE-2023-20818 | In wlan service, there is a possible out of bounds read due to improper input validation. This could... | | |
| CVE-2023-20819 | In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This co... | | |
| CVE-2023-20820 | In wlan service, there is a possible command injection due to improper input validation. This could ... | | |
| CVE-2023-20821 | In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20822 | In netdagent, there is a possible out of bounds write due to a missing bounds check. This could lead... | | |
| CVE-2023-20823 | In cmdq, there is a possible out of bounds read due to an incorrect status check. This could lead to... | | |
| CVE-2023-20824 | In duraspeed, there is a possible information disclosure due to a missing permission check. This cou... | | |
| CVE-2023-20825 | In duraspeed, there is a possible information disclosure due to a missing permission check. This cou... | | |
| CVE-2023-20826 | In cta, there is a possible information disclosure due to a missing permission check. This could lea... | | |
| CVE-2023-20827 | In ims service, there is a possible memory corruption due to a race condition. This could lead to lo... | | |
| CVE-2023-20828 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20829 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20830 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20831 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20832 | In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to lo... | | |
| CVE-2023-20833 | In keyinstall, there is a possible information disclosure due to a missing bounds check. This could ... | | |
| CVE-2023-20834 | In pda, there is a possible use after free due to a race condition. This could lead to local escalat... | | |
| CVE-2023-20835 | In camsys, there is a possible use after free due to a race condition. This could lead to local esca... | | |
| CVE-2023-20836 | In camsys, there is a possible out of bounds read due to a missing bounds check. This could lead to ... | | |
| CVE-2023-20837 | In seninf, there is a possible out of bounds write due to a missing bounds check. This could lead to... | | |
| CVE-2023-20838 | In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local ... | | |
| CVE-2023-20839 | In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could ... | | |
| CVE-2023-20840 | In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. T... | | |
| CVE-2023-20841 | In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could... | | |
| CVE-2023-20842 | In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This ... | | |
| CVE-2023-20843 | In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This c... | | |
| CVE-2023-20844 | In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This c... | | |
| CVE-2023-20845 | In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could ... | | |
| CVE-2023-20846 | In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This c... | | |
| CVE-2023-20847 | In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This c... | | |
| CVE-2023-20848 | In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This c... | | |
| CVE-2023-20849 | In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could... | | |
| CVE-2023-20850 | In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This ... | | |
| CVE-2023-20851 | In stc, there is a possible out of bounds read due to a race condition. This could lead to local esc... | | |
| CVE-2023-20852 | aEnrich a+HRD - Deserialization of Untrusted Data | S | |
| CVE-2023-20853 | aEnrich a+HRD - Deserialization of Untrusted Data | S | |
| CVE-2023-20854 | VMware Workstation contains an arbitrary file deletion vulnerability. A malicious actor with local u... | S | |
| CVE-2023-20855 | VMware vRealize Orchestrator contains an XML External Entity (XXE) vulnerability. A malicious actor,... | S | |
| CVE-2023-20856 | VMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. A malicious user could exec... | | |
| CVE-2023-20857 | VMware Workspace ONE Content contains a passcode bypass vulnerability. A malicious actor, with acces... | | |
| CVE-2023-20858 | VMware Carbon Black App Control 8.7.x prior to 8.7.8, 8.8.x prior to 8.8.6, and 8.9.x.prior to 8.9.4... | S | |
| CVE-2023-20859 | In Spring Vault, versions 3.0.x prior to 3.0.2 and versions 2.3.x prior to 2.3.3 and older versions,... | | |
| CVE-2023-20860 | Spring Framework running version 6.0.0 - 6.0.6 or 5.3.0 - 5.3.25 using "**" as a pattern in Spring S... | | |
| CVE-2023-20861 | In Spring Framework versions 6.0.0 - 6.0.6, 5.3.0 - 5.3.25, 5.2.0.RELEASE - 5.2.22.RELEASE, and olde... | | |
| CVE-2023-20862 | In Spring Security, versions 5.7.x prior to 5.7.8, versions 5.8.x prior to 5.8.3, and versions 6.0.x... | | |
| CVE-2023-20863 | In spring framework versions prior to 5.2.24 release+ ,5.3.27+ and 6.0.8+ , it is possible for a use... | | |
| CVE-2023-20864 | VMware Aria Operations for Logs contains a deserialization vulnerability. An unauthenticated, malici... | | |
| CVE-2023-20865 | VMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with a... | | |
| CVE-2023-20866 | In Spring Session version 3.0.0, the session id can be logged to the standard output stream. This vu... | | |
| CVE-2023-20867 | VMware Tools Authentication Bypass Vulnerability | KEV S | |
| CVE-2023-20868 | NSX-T contains a reflected cross-site scripting vulnerability due to a lack of input validation. A r... | | |
| CVE-2023-20869 | VMware Workstation (17.x) and VMware Fusion (13.x) contain a stack-based buffer-overflow vulnerabili... | | |
| CVE-2023-20870 | VMware Workstation and Fusion contain an out-of-bounds read vulnerability that exists in the functio... | | |
| CVE-2023-20871 | VMware Fusion contains a local privilege escalation vulnerability. A malicious actor with read/write... | | |
| CVE-2023-20872 | VMware Workstation and Fusion contain an out-of-bounds read/write vulnerability in SCSI CD/DVD devic... | | |
| CVE-2023-20873 | In Spring Boot versions 3.0.0 - 3.0.5, 2.7.0 - 2.7.10, and older unsupported versions, an applicatio... | | |
| CVE-2023-20877 | VMware Aria Operations contains a privilege escalation vulnerability. An authenticated malicious use... | | |
| CVE-2023-20878 | VMware Aria Operations contains a deserialization vulnerability. A malicious actor with administrati... | | |
| CVE-2023-20879 | VMware Aria Operations contains a Local privilege escalation vulnerability. A malicious actor with a... | | |
| CVE-2023-20880 | VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with adminis... | | |
| CVE-2023-20881 | Cloud foundry instances having CAPI version between 1.140 and 1.152.0 along with loggregator-agent v... | | |
| CVE-2023-20882 | In Cloud foundry routing release versions from 0.262.0 and prior to 0.266.0,a bug in the gorouter pr... | | |
| CVE-2023-20883 | In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsu... | | |
| CVE-2023-20884 | VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. ... | S | |
| CVE-2023-20885 | CF workflows leak credentials in system audit logs | | |
| CVE-2023-20886 | VMware Workspace ONE UEM console contains an open redirect vulnerability. A malicious actor may be... | | |
| CVE-2023-20887 | Aria Operations for Networks contains a command injection vulnerability. A malicious actor with netw... | KEV E S | |
| CVE-2023-20888 | Aria Operations for Networks contains an authenticated deserialization vulnerability. A malicious ac... | S | |
| CVE-2023-20889 | Aria Operations for Networks contains an information disclosure vulnerability. A malicious actor wit... | S | |
| CVE-2023-20890 | Aria Operations for Networks contains an arbitrary file write vulnerability. An authenticated malici... | | |
| CVE-2023-20891 | VMware Tanzu Application Service for VMs and Isolation Segment information disclosure vulnerability | S | |
| CVE-2023-20892 | VMware vCenter Server heap-overflow vulnerability | S | |
| CVE-2023-20893 | The VMware vCenter Server contains a use-after-free vulnerability in the implementation of the DCERP... | S | |
| CVE-2023-20894 | The VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the... | S | |
| CVE-2023-20895 | The VMware vCenter Server contains a memory corruption vulnerability in the implementation of the DC... | S | |
| CVE-2023-20896 | The VMware vCenter Server contains an out-of-bounds read vulnerability in the implementation of the ... | S | |
| CVE-2023-20897 | Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad p... | | |
| CVE-2023-20898 | Git Providers can read from the wrong environment because they get the same cache directory base nam... | M | |
| CVE-2023-20899 | VMware SD-WAN (Edge) contains a bypass authentication vulnerability. An unauthenticated attacker can... | | |
| CVE-2023-20900 | A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMwar... | S | |
| CVE-2023-20902 | Timing attack risk in Harbor | E | |
| CVE-2023-20903 | This disclosure regards a vulnerability related to UAA refresh tokens and external identity provider... | | |
| CVE-2023-20904 | In getTrampolineIntent of SettingsActivity.java, there is a possible launch of arbitrary activity du... | | |
| CVE-2023-20905 | In Mfc_Transceive of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write due to a miss... | | |
| CVE-2023-20906 | In onPackageAddedInternal of PermissionManagerService.java, there is a possible way to silently gran... | | |
| CVE-2023-20908 | In several functions of SettingsState.java, there is a possible system crash loop due to resource ex... | | |
| CVE-2023-20909 | In multiple functions of RunningTasks.java, there is a possible privilege escalation due to a missin... | | |
| CVE-2023-20910 | In add of WifiNetworkSuggestionsManager.java, there is a possible way to trigger permanent DoS due t... | | |
| CVE-2023-20911 | In addPermission of PermissionManagerServiceImpl.java , there is a possible failure to persist permi... | S | |
| CVE-2023-20912 | In onActivityResult of AvatarPickerActivity.java, there is a possible way to access images belonging... | | |
| CVE-2023-20913 | In onCreate of PhoneAccountSettingsActivity.java and related files, there is a possible way to misle... | | |
| CVE-2023-20914 | In onSetRuntimePermissionGrantStateByDeviceAdmin of AdminRestrictedPermissionsUtils.java, there is a... | S | |
| CVE-2023-20915 | In addOrReplacePhoneAccount of PhoneAccountRegistrar.java, there is a possible way to enable a phone... | | |
| CVE-2023-20916 | In getMainActivityLaunchIntent of LauncherAppsService.java, there is a possible way to bypass the re... | | |
| CVE-2023-20917 | In onTargetSelected of ResolverActivity.java, there is a possible way to share a wrong file due to a... | S | |
| CVE-2023-20918 | In getPendingIntentLaunchFlags of ActivityOptions.java, there is a possible elevation of privilege d... | S | |
| CVE-2023-20919 | In getStringsForPrefix of Settings.java, there is a possible prevention of package uninstallation du... | | |
| CVE-2023-20920 | In queue of UsbRequest.java, there is a possible way to corrupt memory due to a use after free. This... | | |
| CVE-2023-20921 | In onPackageRemoved of AccessibilityManagerService.java, there is a possibility to automatically gra... | | |
| CVE-2023-20922 | In setMimeGroup of PackageManagerService.java, there is a possible crash loop due to resource exhaus... | | |
| CVE-2023-20923 | In exported content providers of ShannonRcs, there is a possible way to get access to protected cont... | | |
| CVE-2023-20924 | In (TBD) of (TBD), there is a possible way to bypass the lockscreen due to Biometric Auth Failure. T... | | |
| CVE-2023-20925 | In setUclampMinLocked of PowerSessionManager.cpp, there is a possible way to corrupt memory due to a... | | |
| CVE-2023-20926 | In onParentVisible of HeaderPrivacyIconsController.kt, there is a possible way to bypass factory res... | S | |
| CVE-2023-20927 | In permissions of AndroidManifest.xml, there is a possible way to grant signature permissions due to... | | |
| CVE-2023-20928 | In binder_vma_close of binder.c, there is a possible use after free due to improper locking. This co... | | |
| CVE-2023-20929 | In sendHalfSheetCancelBroadcast of HalfSheetActivity.java, there is a possible way to learn nearby B... | S | |
| CVE-2023-20930 | In pushDynamicShortcut of ShortcutPackage.java, there is a possible way to get the device into a boo... | S | |
| CVE-2023-20931 | In avdt_scb_hdl_write_req of avdt_scb_act.cc, there is a possible out of bounds write due to a heap ... | S | |
| CVE-2023-20932 | In onCreatePreferences of EditInfoFragment.java, there is a possible way to read contacts belonging ... | S | |
| CVE-2023-20933 | In several functions of MediaCodec.cpp, there is a possible way to corrupt memory due to a use after... | S | |
| CVE-2023-20934 | In resolveAttributionSource of ServiceUtilities.cpp, there is a possible way to disable the micropho... | S | |
| CVE-2023-20935 | In deserialize of multiple files, there is a possible out of bounds read due to a missing bounds che... | | |
| CVE-2023-20936 | In bta_av_rc_disc_done of bta_av_act.cc, there is a possible out of bounds write due to a missing bo... | S | |
| CVE-2023-20937 | In several functions of the Android Linux kernel, there is a possible way to corrupt memory due to a... | E S | |
| CVE-2023-20938 | In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper... | S | |
| CVE-2023-20939 | In multiple functions of looper_backed_event_loop.cpp, there is a possible way to corrupt memory due... | S | |
| CVE-2023-20940 | In the Android operating system, there is a possible way to replace a boot partition due to improper... | S | |
| CVE-2023-20941 | In acc_ctrlrequest_composite of f_accessory.c, there is a possible out of bounds write due to a miss... | | |
| CVE-2023-20942 | In openMmapStream of AudioFlinger.cpp, there is a possible way to record audio without displaying th... | S | |
| CVE-2023-20943 | In clearApplicationUserData of ActivityManagerService.java, there is a possible way to remove system... | S | |
| CVE-2023-20944 | In run of ChooseTypeAndAccountActivity.java, there is a possible escalation of privilege due to unsa... | S | |
| CVE-2023-20945 | In phNciNfc_MfCreateXchgDataHdr of phNxpExtns_MifareStd.cpp, there is a possible out of bounds write... | S | |
| CVE-2023-20946 | In onStart of BluetoothSwitchPreferenceController.java, there is a possible permission bypass due to... | S | |
| CVE-2023-20947 | In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permiss... | S | |
| CVE-2023-20948 | In dropFramesUntilIframe of AAVCAssembler.cpp, there is a possible out of bounds read due to a heap ... | S | |
| CVE-2023-20949 | In s2mpg11_pmic_probe of s2mpg11-regulator.c, there is a possible out of bounds read due to a heap b... | | |
| CVE-2023-20950 | In AlarmManagerActivity of AlarmManagerActivity.java, there is a possible way to bypass background a... | S | |
| CVE-2023-20951 | In gatt_process_prep_write_rsp of gatt_cl.cc, there is a possible out of bounds write due to a missi... | S | |
| CVE-2023-20952 | In A2DP_BuildCodecHeaderSbc of a2dp_sbc.cc, there is a possible out of bounds write due to a missing... | S | |
| CVE-2023-20953 | In onPrimaryClipChanged of ClipboardListener.java, there is a possible way to bypass factory reset p... | S | |
| CVE-2023-20954 | In SDP_AddAttribute of sdp_db.cc, there is a possible out of bounds write due to an incorrect bounds... | S | |
| CVE-2023-20955 | In onPrepareOptionsMenu of AppInfoDashboardFragment.java, there is a possible way to bypass admin re... | S | |
| CVE-2023-20956 | In Import of C2SurfaceSyncObj.cpp, there is a possible out of bounds write due to a missing bounds c... | S | |
| CVE-2023-20957 | In onAttach of SettingsPreferenceFragment.java, there is a possible bypass of Factory Reset Protecti... | S | |
| CVE-2023-20958 | In read_paint of ttcolr.c, there is a possible out of bounds read due to a heap buffer overflow. Thi... | E S | |
| CVE-2023-20959 | In AddSupervisedUserActivity, guest users are not prevented from starting the activity due to missin... | | |
| CVE-2023-20960 | In launchDeepLinkIntentToRight of SettingsHomepageActivity.java, there is a possible way to launch a... | | |
| CVE-2023-20962 | In getSliceEndItem of MediaVolumePreferenceController.java, there is a possible way to start foregro... | | |
| CVE-2023-20963 | In WorkSource, there is a possible parcel mismatch. This could lead to local escalation of privilege... | KEV S | |
| CVE-2023-20964 | In multiple functions of MediaSessionRecord.java, there is a possible Intent rebroadcast due to a co... | | |
| CVE-2023-20965 | In processMessageImpl of ClientModeImpl.java, there is a possible credential disclosure in the TOFU ... | S | |
| CVE-2023-20966 | In inflate of inflate.c, there is a possible out of bounds write due to a heap buffer overflow. This... | | |
| CVE-2023-20967 | In avdt_scb_hdl_pkt_no_frag of avdt_scb_act.cc, there is a possible out of bounds write due to an in... | | |
| CVE-2023-20968 | In multiple functions of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun... | | |
| CVE-2023-20969 | In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun... | | |
| CVE-2023-20970 | In multiple locations of p2p_iface.cpp, there is a possible out of bounds read due to a missing boun... | | |
| CVE-2023-20971 | In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerou... | | |
| CVE-2023-20972 | In btm_vendor_specific_evt of btm_devctl.cc, there is a possible out of bounds read due to a missing... | | |
| CVE-2023-20973 | In btm_create_conn_cancel_complete of btm_sec.cc, there is a possible out of bounds read due to a mi... | | |
| CVE-2023-20974 | In btm_ble_add_resolving_list_entry_complete of btm_ble_privacy.cc, there is a possible out of bound... | | |
| CVE-2023-20975 | In getAvailabilityStatus of EnableContentCapturePreferenceController.java, there is a possible way t... | | |
| CVE-2023-20976 | In getConfirmationMessage of DefaultAutofillPicker.java, there is a possible way to mislead the user... | | |
| CVE-2023-20977 | In btm_ble_read_remote_features_complete of btm_ble_gap.cc, there is a possible out of bounds read d... | | |
| CVE-2023-20979 | In GetNextSourceDataPacket of bta_av_co.cc, there is a possible out of bounds read due to a missing ... | | |
| CVE-2023-20980 | In btu_ble_ll_conn_param_upd_evt of btu_hcif.cc, there is a possible out of bounds read due to a mis... | | |
| CVE-2023-20981 | In btu_ble_rc_param_req_evt of btu_hcif.cc, there is a possible out of bounds read due to a missing ... | | |
| CVE-2023-20982 | In btm_read_tx_power_complete of btm_acl.cc, there is a possible out of bounds read due to a missing... | | |
| CVE-2023-20983 | In btm_ble_rand_enc_complete of btm_ble.cc, there is a possible out of bounds read due to a missing ... | | |
| CVE-2023-20984 | In ParseBqrLinkQualityEvt of btif_bqr.cc, there is a possible out of bounds read due to a missing bo... | | |
| CVE-2023-20985 | In BTA_GATTS_HandleValueIndication of bta_gatts_api.cc, there is a possible out of bounds write due ... | | |
| CVE-2023-20986 | In btm_ble_clear_resolving_list_completecomplete of btm_ble_privacy.cc, there is a possible out of b... | | |
| CVE-2023-20987 | In btm_read_link_quality_complete of btm_acl.cc, there is a possible out of bounds read due to a mis... | | |
| CVE-2023-20988 | In btm_read_rssi_complete of btm_acl.cc, there is a possible out of bounds read due to a missing bou... | | |
| CVE-2023-20989 | In btm_ble_write_adv_enable_complete of btm_ble_gap.cc, there is a possible out of bounds read due t... | | |
| CVE-2023-20990 | In btm_ble_rand_enc_complete of btm_ble.cc, there is a possible out of bounds read due to a missing ... | | |
| CVE-2023-20991 | In btm_ble_process_periodic_adv_sync_lost_evt of ble_scanner_hci_interface.cc , there is a possible ... | | |
| CVE-2023-20992 | In on_iso_link_quality_read of btm_iso_impl.h, there is a possible out of bounds read due to a missi... | | |
| CVE-2023-20993 | In multiple functions of SnoozeHelper.java, there is a possible failure to persist settings due to a... | | |
| CVE-2023-20994 | In _ufdt_output_property_to_fdt of ufdt_convert.c, there is a possible out of bounds write due to an... | S | |
| CVE-2023-20995 | In captureImage of CustomizedSensor.cpp, there is a possible way to bypass the fingerprint unlock du... | | |
| CVE-2023-20996 | In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper i... | S | |
| CVE-2023-20997 | In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper i... | S | |
| CVE-2023-20998 | In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper i... | S | |
| CVE-2023-20999 | In multiple locations, there is a possible way to trigger a persistent reboot loop due to improper i... | S |