CVE-2024-0029

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-693
View all →

Vulnerability Description

In multiple files, there is a possible way to capture the device screen when disallowed by device policy due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Related Vulnerabilities

CVE-2025-0411

HIGH
CVSS:7.0(High)

7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is requir...

CWE-6932025

CVE-2024-28248

HIGH
CVSS:7.2(High)

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.13.9 and prior to versions 1.13.13, 1.14.8, and 1.15.2, Cilium's HTTP policies are not ...

CWE-6932024

CVE-2020-28396

HIGH
CVSS:7.3(High)

A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V16), SICAM A8000 CP-8021 (All versions < V16), SICAM A8000 CP-8022 (All versions < V16). A web server misconfiguration of th...

CWE-6932020

CVE-2020-7320

HIGH
CVSS:7.3(High)

Protection Mechanism Failure vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capability...

CWE-6932020

CVE-2018-9314

MEDIUM
CVSS:6.8(Medium)

The Head Unit HU_NBT (aka Infotainment) component on BMW i Series, BMW X Series, BMW 3 Series, BMW 5 Series, and BMW 7 Series vehicles produced in 2012 through 2018 allows an attack by an attacker who...

CWE-6932018