IOactive

8 exploits Active since Jul 2012
CVE-2019-2198 NOMISEC MEDIUM WORKING POC
Android 8.0-10 - SQL Injection in Download Provider
In Download Provider, there is a possible SQL injection vulnerability. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-135270103
35 stars
CVSS 5.5
CVE-2018-9375 NOMISEC HIGH WORKING POC
Android - Local Privilege Escalation via UserDictionaryProvider Confused Deputy
In multiple functions of UserDictionaryProvider.java, there is a possible way to add and delete words in the user dictionary due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
21 stars
CVSS 7.8
CVE-2018-9468 NOMISEC HIGH WORKING POC
Android - Arbitrary File Read and Write via DownloadManager Permissions Bypass
In query of DownloadManager.java, there is a possible read/write of arbitrary files due to a permissions bypass. This could lead to local information disclosure and file rewriting with no additional execution privileges needed. User interaction is not needed for exploitation.
20 stars
CVSS 7.1
CVE-2018-9493 NOMISEC MEDIUM WORKING POC
Android 7.0-9.0 - SQL Injection in Download Manager Content Provider
In the content provider of the download manager, there is a possible SQL injection due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9.0 Android ID: A-111085900
8 stars
CVSS 5.5
CVE-2019-2196 NOMISEC MEDIUM WORKING POC
Android -8.0, -8.1, -9, -10 - SQL Injection
In Download Provider, there is possible SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-135269143
2 stars
CVSS 5.5
CVE-2016-7255 EXPLOITDB HIGH text WORKING POC
Microsoft Windows - Privilege Escalation
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."
CVSS 7.8
CVE-2012-2138 EXPLOITDB text WORKING POC
org.apache.sling.servlets.post < 2.1.2 - Denial of Service via @CopyFrom Operation
The @CopyFrom operation in the POST servlet in the org.apache.sling.servlets.post bundle before 2.1.2 in Apache Sling does not prevent attempts to copy an ancestor node to a descendant node, which allows remote attackers to cause a denial of service (infinite loop) via a crafted HTTP request.
EIP-2026-102342 EXPLOITDB python WORKING POC
Java Debug Wire Protocol (JDWP) - Remote Code Execution