Vulnerabilities (CVE)

  1. Yack CVE
  2. Vulnerabilities (CVE)
Filtered by NVD-CWE-noinfo
Angry Yack Logo
Total 34640 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-20947 1 Google 1 Android 2025-02-28 N/A 7.8 HIGH
In getGroupState of GrantPermissionsViewModel.kt, there is a possible way to keep a one-time permission granted due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-237405974
CVE-2023-20917 1 Google 1 Android 2025-02-28 N/A 7.8 HIGH
In onTargetSelected of ResolverActivity.java, there is a possible way to share a wrong file due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-242605257
CVE-2023-20906 1 Google 1 Android 2025-02-28 N/A 7.8 HIGH
In onPackageAddedInternal of PermissionManagerService.java, there is a possible way to silently grant a permission after a Target SDK update due to a permissions bypass. This could lead to local escalation of privilege after updating an app to a higher Target SDK with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-221040577
CVE-2022-44689 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2019 and 2 more 2025-02-28 N/A 7.8 HIGH
Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability
CVE-2022-41061 1 Microsoft 7 365 Apps, Office, Office Online Server and 4 more 2025-02-28 N/A 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-41032 2 Fedoraproject, Microsoft 5 Fedora, .net, .net Core and 2 more 2025-02-28 N/A 7.8 HIGH
NuGet Client Elevation of Privilege Vulnerability
CVE-2021-40487 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2025-02-28 6.5 MEDIUM 8.1 HIGH
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-40485 1 Microsoft 6 365 Apps, Excel, Office and 3 more 2025-02-28 6.8 MEDIUM 7.8 HIGH
Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-31982 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 8.8 HIGH
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2021-31949 1 Microsoft 3 365 Apps, Office, Outlook 2025-02-28 6.8 MEDIUM 7.3 HIGH
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2021-31181 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2025-02-28 6.5 MEDIUM 8.8 HIGH
Microsoft SharePoint Remote Code Execution Vulnerability
CVE-2021-31172 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2025-02-28 5.8 MEDIUM 7.1 HIGH
Microsoft SharePoint Server Spoofing Vulnerability
CVE-2021-28478 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2025-02-28 5.8 MEDIUM 7.6 HIGH
Microsoft SharePoint Server Spoofing Vulnerability
CVE-2021-26418 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2025-02-28 5.8 MEDIUM 4.6 MEDIUM
Microsoft SharePoint Server Spoofing Vulnerability
CVE-2023-38187 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 6.5 MEDIUM
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2023-38173 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 4.3 MEDIUM
Microsoft Edge for Android Spoofing Vulnerability
CVE-2023-38158 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 3.1 LOW
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2023-38157 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 6.5 MEDIUM
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-36894 1 Microsoft 1 Sharepoint Server 2025-02-28 N/A 6.5 MEDIUM
Microsoft SharePoint Server Information Disclosure Vulnerability
CVE-2023-36888 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 6.3 MEDIUM
Microsoft Edge for Android (Chromium-based) Tampering Vulnerability
CVE-2023-36883 1 Microsoft 1 Edge 2025-02-28 N/A 4.3 MEDIUM
Microsoft Edge for iOS Spoofing Vulnerability
CVE-2023-36769 1 Microsoft 1 Onenote 2025-02-28 N/A 4.6 MEDIUM
Microsoft OneNote Spoofing Vulnerability
CVE-2023-36024 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 7.1 HIGH
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2023-36022 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 6.6 MEDIUM
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2023-35392 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 4.7 MEDIUM
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2023-29354 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 4.7 MEDIUM
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-29334 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 4.3 MEDIUM
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVE-2023-29333 1 Microsoft 2 365 Apps, Office 2025-02-28 N/A 3.3 LOW
Microsoft Access Denial of Service Vulnerability
CVE-2023-28301 1 Microsoft 1 Edge 2025-02-28 N/A 3.7 LOW
Microsoft Edge (Chromium-based) Tampering Vulnerability
CVE-2023-28286 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 6.1 MEDIUM
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-28284 1 Microsoft 1 Edge 2025-02-28 N/A 4.3 MEDIUM
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-28261 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 5.7 MEDIUM
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2022-30184 3 Apple, Fedoraproject, Microsoft 7 Macos, Fedora, .net and 4 more 2025-02-28 4.3 MEDIUM 5.5 MEDIUM
.NET and Visual Studio Information Disclosure Vulnerability
CVE-2022-20499 1 Google 1 Android 2025-02-28 N/A 5.5 MEDIUM
In validateForCommonR1andR2 of PasspointConfiguration.java, uncaught errors in parsing stored configs could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12 Android-12L Android-13Android ID: A-246539931
CVE-2021-31937 1 Microsoft 1 Edge Chromium 2025-02-28 N/A 8.2 HIGH
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-31209 1 Microsoft 1 Exchange Server 2025-02-28 5.8 MEDIUM 6.5 MEDIUM
Microsoft Exchange Server Spoofing Vulnerability
CVE-2021-31195 1 Microsoft 1 Exchange Server 2025-02-28 6.8 MEDIUM 6.5 MEDIUM
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2021-31173 1 Microsoft 2 Sharepoint Foundation, Sharepoint Server 2025-02-28 4.0 MEDIUM 5.3 MEDIUM
Microsoft SharePoint Server Information Disclosure Vulnerability
CVE-2023-27904 1 Jenkins 1 Jenkins 2025-02-28 N/A 5.3 MEDIUM
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier prints an error stack trace on agent-related pages when agent connections are broken, potentially revealing information about Jenkins configuration that is otherwise inaccessible to attackers.
CVE-2023-27902 1 Jenkins 1 Jenkins 2025-02-28 N/A 4.3 MEDIUM
Jenkins 2.393 and earlier, LTS 2.375.3 and earlier shows temporary directories related to job workspaces, which allows attackers with Item/Workspace permission to access their contents.