CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2021(Memory Corruption)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
351 CVE-2021-0664 416 Mem. Corr. 2021-11-18 2021-11-19
4.6
None Local Low Not required Partial Partial Partial
In ccu, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05827158; Issue ID: ALPS05827158.
352 CVE-2021-0656 416 Mem. Corr. 2021-11-18 2021-11-19
4.6
None Local Low Not required Partial Partial Partial
In edma driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05709376; Issue ID: ALPS05709376.
353 CVE-2021-0655 269 Mem. Corr. 2021-11-18 2021-11-19
4.6
None Local Low Not required Partial Partial Partial
In mdlactl driver, there is a possible memory corruption due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05673424; Issue ID: ALPS05673424.
354 CVE-2021-0652 119 Overflow Mem. Corr. 2021-10-22 2021-10-26
7.2
None Local Low Not required Complete Complete Complete
In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-185178568
355 CVE-2021-0634 908 Mem. Corr. 2021-10-25 2021-10-26
7.2
None Local Low Not required Complete Complete Complete
In display driver, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05594994; Issue ID: ALPS05594994.
356 CVE-2021-0629 416 Mem. Corr. 2021-11-18 2021-11-19
7.2
None Local Low Not required Complete Complete Complete
In mdlactl driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05776625; Issue ID: ALPS05776625.
357 CVE-2021-0628 20 Mem. Corr. 2021-08-18 2021-08-25
4.6
None Local Low Not required Partial Partial Partial
In OMA DRM, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05722454; Issue ID: ALPS05722454.
358 CVE-2021-0627 190 Overflow Mem. Corr. 2021-08-18 2021-08-25
4.6
None Local Low Not required Partial Partial Partial
In OMA DRM, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05722434; Issue ID: ALPS05722434.
359 CVE-2021-0625 667 Mem. Corr. 2021-10-25 2021-10-26
7.2
None Local Low Not required Complete Complete Complete
In ccu, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05594996; Issue ID: ALPS05594996.
360 CVE-2021-0612 416 Mem. Corr. 2021-09-27 2021-10-02
4.6
None Local Low Not required Partial Partial Partial
In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425834.
361 CVE-2021-0611 416 Mem. Corr. 2021-09-27 2021-10-02
4.6
None Local Low Not required Partial Partial Partial
In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425810.
362 CVE-2021-0610 190 Overflow Mem. Corr. 2021-09-27 2021-10-01
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05411456.
363 CVE-2021-0535 416 Mem. Corr. 2021-06-22 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In wpas_ctrl_msg_queue_timeout of ctrl_iface_unix.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-168314741
364 CVE-2021-0533 362 Mem. Corr. 2021-06-21 2021-06-25
4.4
None Local Medium Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185193932
365 CVE-2021-0532 362 Mem. Corr. 2021-06-21 2021-06-23
4.4
None Local Medium Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185196177
366 CVE-2021-0531 416 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195272
367 CVE-2021-0529 667 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195268
368 CVE-2021-0528 415 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195266
369 CVE-2021-0527 416 Mem. Corr. 2021-06-21 2021-06-23
4.6
None Local Low Not required Partial Partial Partial
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185193931
370 CVE-2021-0498 415 Mem. Corr. 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461321
371 CVE-2021-0497 416 Mem. Corr. 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461320
372 CVE-2021-0496 416 Mem. Corr. 2021-06-11 2021-06-15
7.2
None Local Low Not required Complete Complete Complete
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183467912
373 CVE-2021-0482 416 Exec Code Mem. Corr. 2021-06-11 2021-06-16
6.9
None Local Medium Not required Complete Complete Complete
In BinderDiedCallback of MediaCodec.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-173791720
374 CVE-2021-0475 416 Exec Code Mem. Corr. 2021-06-11 2021-06-14
8.3
None Local Network Low Not required Complete Complete Complete
In on_l2cap_data_ind of btif_sock_l2cap.cc, there is possible memory corruption due to a use after free. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-175686168
375 CVE-2021-0429 416 Mem. Corr. 2021-04-13 2021-04-16
4.6
None Local Low Not required Partial Partial Partial
In pollOnce of ALooper.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.1Android ID: A-175074139
376 CVE-2021-0401 362 Mem. Corr. 2021-02-26 2021-03-02
6.9
None Local Medium Not required Complete Complete Complete
In vow, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05418265.
377 CVE-2021-0399 416 Mem. Corr. 2021-03-10 2021-03-15
4.6
None Local Low Not required Partial Partial Partial
In qtaguid_untag of xt_qtaguid.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-176919394References: Upstream kernel
378 CVE-2021-0395 416 Mem. Corr. 2021-03-10 2021-03-12
4.6
None Local Low Not required Partial Partial Partial
In StopServicesAndLogViolations of reboot.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-170315126
379 CVE-2021-0392 415 Mem. Corr. 2021-03-10 2021-03-12
4.6
None Local Low Not required Partial Partial Partial
In main of main.cpp, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-9Android ID: A-175124730
380 CVE-2021-0367 362 Mem. Corr. 2021-02-26 2021-03-02
6.9
None Local Medium Not required Complete Complete Complete
In vpu, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05371580; Issue ID: ALPS05379085.
381 CVE-2021-0366 362 Mem. Corr. 2021-02-26 2021-03-02
6.9
None Local Medium Not required Complete Complete Complete
In vpu, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05371580; Issue ID: ALPS05379093.
382 CVE-2021-0365 416 Mem. Corr. 2021-02-03 2021-02-23
4.6
None Local Low Not required Partial Partial Partial
In display driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05454782.
383 CVE-2021-0362 787 Overflow Mem. Corr. 2021-02-03 2021-02-04
4.6
None Local Low Not required Partial Partial Partial
In aee, there is a possible memory corruption due to a stack buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05457070.
384 CVE-2021-0353 787 Overflow Mem. Corr. 2021-02-03 2021-02-04
4.6
None Local Low Not required Partial Partial Partial
In kisd, there is a possible memory corruption due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Patch ID: ALPS05425247.
385 CVE-2021-0352 843 DoS Mem. Corr. 2021-02-03 2021-02-23
2.1
None Local Low Not required None None Partial
In RT regmap driver, there is a possible memory corruption due to type confusion. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05453809.
386 CVE-2021-0349 416 Mem. Corr. 2021-02-04 2021-02-23
7.2
None Local Low Not required Complete Complete Complete
In display driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-9, Android-10, Android-11; Patch ID: ALPS05362646.
387 CVE-2021-0344 Mem. Corr. 2021-02-04 2021-02-23
7.2
None Local Low Not required Complete Complete Complete
In mtkpower, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-10, Android-11; Patch ID: ALPS05437558.
388 CVE-2021-0342 416 Mem. Corr. 2021-01-11 2021-01-13
4.6
None Local Low Not required Partial Partial Partial
In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Versions: Android kernel; Android ID: A-146554327.
389 CVE-2021-0332 416 Mem. Corr. 2021-02-10 2021-02-12
7.2
None Local Low Not required Complete Complete Complete
In bootFinished of SurfaceFlinger.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-169256435
390 CVE-2021-0310 416 Mem. Corr. 2021-01-11 2021-01-13
7.2
None Local Low Not required Complete Complete Complete
In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android; Versions: Android-11; Android ID: A-170212632.
391 CVE-2020-36220 Mem. Corr. 2021-01-26 2021-07-21
4.3
None Remote Medium Not required None None Partial
An issue was discovered in the va-ts crate before 0.0.4 for Rust. Because Demuxer<T> omits a required T: Send bound, a data race and memory corruption can occur.
392 CVE-2020-36217 Mem. Corr. 2021-01-26 2021-07-21
4.3
None Remote Medium Not required None None Partial
An issue was discovered in the may_queue crate through 2020-11-10 for Rust. Because Queue does not have bounds on its Send trait or Sync trait, memory corruption can occur.
393 CVE-2020-36216 Mem. Corr. 2021-01-26 2021-07-21
4.3
None Remote Medium Not required None None Partial
An issue was discovered in Input<R> in the eventio crate before 0.5.1 for Rust. Because a non-Send type can be sent to a different thread, a data race and memory corruption can occur.
394 CVE-2020-36215 Mem. Corr. 2021-01-26 2021-07-21
5.0
None Remote Low Not required None None Partial
An issue was discovered in the hashconsing crate before 1.1.0 for Rust. Because HConsed does not have bounds on its Send trait or Sync trait, memory corruption can occur.
395 CVE-2020-36211 Mem. Corr. 2021-01-26 2021-07-21
4.4
None Local Medium Not required Partial Partial Partial
An issue was discovered in the gfwx crate before 0.3.0 for Rust. Because ImageChunkMut does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur.
396 CVE-2020-36210 908 Mem. Corr. 2021-01-26 2021-07-21
4.6
None Local Low Not required Partial Partial Partial
An issue was discovered in the autorand crate before 0.2.3 for Rust. Because of impl Random on arrays, uninitialized memory can be dropped when a panic occurs, leading to memory corruption.
397 CVE-2020-36208 Mem. Corr. 2021-01-26 2021-07-21
4.6
None Local Low Not required Partial Partial Partial
An issue was discovered in the conquer-once crate before 0.3.2 for Rust. Thread crossing can occur for a non-Send but Sync type, leading to memory corruption.
398 CVE-2020-36207 Mem. Corr. 2021-01-26 2021-07-21
4.4
None Local Medium Not required Partial Partial Partial
An issue was discovered in the aovec crate through 2020-12-10 for Rust. Because Aovec<T> does not have bounds on its Send trait or Sync trait, a data race and memory corruption can occur.
399 CVE-2020-36206 Mem. Corr. 2021-01-26 2021-07-21
4.4
None Local Medium Not required Partial Partial Partial
An issue was discovered in the rusb crate before 0.7.0 for Rust. Because of a lack of Send and Sync bounds, a data race and memory corruption can occur.
400 CVE-2020-36203 Mem. Corr. 2021-01-26 2021-07-21
1.9
None Local Medium Not required None None Partial
An issue was discovered in the reffers crate through 2020-12-01 for Rust. ARefss can contain a !Send,!Sync object, leading to a data race and memory corruption.
Total number of vulnerabilities : 415   Page : 1 2 3 4 5 6 7 8 (This Page)9
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.