Lucene search

K

ALP-AL00B, ALP-AL00B-RSC, BLA-TL00B, Charlotte-AL00A, Emily-AL00A, Security Vulnerabilities

wired
wired

The 'Twinning' Fad, the Weather Channel, and More Security News

A rogue PewDiePie fan, Marriott hack details, and more of the week's top security...

0.8AI Score

2019-01-05 02:00 PM
157
wired
wired

How China Helped Make the Internet Less Free in 2018

Tech companies, democratic governments, and civil society need to work together to fight back against growing surveillance and censorship...

7AI Score

2018-12-26 01:00 PM
96
wired
wired

A NASA Hack, a PewDiePie Fan, and More Security News

Amazon sends Echo recordings to the wrong person, Russians tried to get US Treasury dirt on Clinton donors, and more of the week's top security...

2.2AI Score

2018-12-22 02:00 PM
90
wired
wired

Twitter Abuse Toward Women Is Rampant, Amnesty Report Says

Frustrated by Twitter's silence on abuse, Amnesty International crowdsources its own data and finds that the platform is especially toxic for black...

2.8AI Score

2018-12-18 05:00 AM
77
wired
wired

Nationwide Bomb Threats Look Like New Spin on an Old Bitcoin Scam

Apparent bitcoin scammers caused chaos across the US Thursday, radically escalating longstanding...

2.1AI Score

2018-12-14 12:10 AM
85
threatpost
threatpost

Supply Chain Security: Managing a Complex Risk Profile

NYC — From Delta Airlines to Best Buy, a number of big-name companies were involved this year in data breaches – but even though their names made headlines, the actual security incidents occurred due to flaws in third-party partners. Across the board, companies are scratching their heads trying to....

-0.3AI Score

2018-12-12 01:36 PM
8
wired
wired

Quora Hacked, Moscow Ransomware, and More Security News This Week

China accusations, Eastern European bank heists, and more of the week's top security...

7AI Score

2018-12-08 02:00 PM
64
cve
cve

CVE-2018-7961

There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information...

6.5CVSS

6.4AI Score

0.001EPSS

2018-11-27 10:29 PM
27
prion
prion

Code injection

There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information...

6.5CVSS

6.4AI Score

0.001EPSS

2018-11-27 10:29 PM
2
huawei
huawei

Security Advisory - Smart SMS Verification Code Vulnerability in Some Huawei Smart Phones

There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information leak.....

6.5CVSS

6.2AI Score

0.001EPSS

2018-11-21 12:00 AM
16
huawei
huawei

Security Advisory - Information Leak Vulnerability in Some Huawei Smartphones

There is an information leak vulnerability in some Huawei smartphones. An attacker may do some specific configuration in the smartphone and trick a user into inputting some sensitive information. Due to improper design, successful exploit may cause some information leak. (Vulnerability ID:...

4.3CVSS

4.7AI Score

0.001EPSS

2018-11-21 12:00 AM
19
wired
wired

Julian Assange Charges, Japan's Top Cybersecurity Official, and More Security News This Week

Safer browsing, more bitcoin scams, and the rest of the week's top security...

7AI Score

2018-11-17 03:30 PM
90
cve
cve

CVE-2018-7910

Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...

6.8CVSS

6.6AI Score

0.001EPSS

2018-11-13 07:29 PM
27
prion
prion

Security feature bypass

The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...

6.8CVSS

6.6AI Score

0.001EPSS

2018-11-13 07:29 PM
4
nvd
nvd

CVE-2018-7925

The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...

6.8CVSS

6.6AI Score

0.001EPSS

2018-11-13 07:29 PM
prion
prion

Authentication flaw

Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...

6.8CVSS

6.7AI Score

0.001EPSS

2018-11-13 07:29 PM
3
cve
cve

CVE-2018-7925

The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...

6.8CVSS

6.6AI Score

0.001EPSS

2018-11-13 07:29 PM
21
nvd
nvd

CVE-2018-7910

Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...

6.8CVSS

6.7AI Score

0.001EPSS

2018-11-13 07:29 PM
1
cvelist
cvelist

CVE-2018-7925

The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...

6.6AI Score

0.001EPSS

2018-11-13 07:00 PM
cvelist
cvelist

CVE-2018-7910

Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...

6.7AI Score

0.001EPSS

2018-11-13 07:00 PM
openbugbounty
openbugbounty

keyhole.co XSS vulnerability

Open Bug Bounty ID: OBB-696696 Description| Value ---|--- Affected Website:| keyhole.co Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-11-09 11:37 PM
17
wired
wired

Sue Gordon: Silicon Valley Should Work With the Government

In an expansive on-the-record interview with WIRED, the principal deputy director of national intelligence made her pitch for public-private...

3.2AI Score

2018-11-09 05:05 PM
48
wired
wired

Trump’s ‘Racist’ Midterms Ad Backs Facebook Into a Corner

Facebook took down Donald Trump’s ad for violating its policies, but you can still watch the video on his...

2.1AI Score

2018-11-06 12:40 AM
72
wired
wired

Don’t Be Duped by Voting Misinformation Before the Midterms

How to find accurate voting information for the midterm...

1.9AI Score

2018-11-05 12:30 PM
135
huawei
huawei

Security Advisory - Lock-screen Bypass Vulnerability in Huawei Smartphones

There is a lock-screen bypass vulnerability in radio module of some Huawei smartphones. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this vulnerability. (Vulnerability ID: HWPSIRT-2018-04055) This vulnerability has.....

6.8CVSS

6.5AI Score

0.001EPSS

2018-11-05 12:00 AM
14
huawei
huawei

Security Advisory - Authentication Bypass Vulnerability in Some Huawei Smart Phones

Some Huawei smartphones have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the...

6.8CVSS

6.5AI Score

0.001EPSS

2018-11-01 12:00 AM
17
openbugbounty
openbugbounty

udisglutenfree.com XSS vulnerability

Open Bug Bounty ID: OBB-693637 Description| Value ---|--- Affected Website:| udisglutenfree.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-31 09:52 PM
9
openbugbounty
openbugbounty

duma.bg XSS vulnerability

Open Bug Bounty ID: OBB-693480 Description| Value ---|--- Affected Website:| duma.bg Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-31 06:49 PM
4
openbugbounty
openbugbounty

1amen.com XSS vulnerability

Open Bug Bounty ID: OBB-693426 Description| Value ---|--- Affected Website:| 1amen.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-31 05:55 PM
10
huawei
huawei

Security Advisory - SegmentSmack Vulnerability in Linux Kernel

There is a DoS vulnerability in the Linux Kernel versions 4.9+ known as a SegmentSmack attack. Remote attackers may send TCP packets to Linux kernel to make it calls the very expensive functions tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() of the affected device which can lead to a denial of....

7.5CVSS

2.9AI Score

0.783EPSS

2018-10-31 12:00 AM
26
huawei
huawei

Security Advisory - SegmentSmack Vulnerability in Linux Kernel

There is a DoS vulnerability in the Linux Kernel versions 4.9+ known as a SegmentSmack attack. Remote attackers may send TCP packets to Linux kernel to make it calls the very expensive functions tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() of the affected device which can lead to a denial of....

7.5CVSS

7.2AI Score

0.783EPSS

2018-10-31 12:00 AM
48
openbugbounty
openbugbounty

danieljouvance.com XSS vulnerability

Open Bug Bounty ID: OBB-693039 Description| Value ---|--- Affected Website:| danieljouvance.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-30 07:21 PM
29
openbugbounty
openbugbounty

ulss13mirano.ven.it XSS vulnerability

Open Bug Bounty ID: OBB-692216 Description| Value ---|--- Affected Website:| ulss13mirano.ven.it Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-29 06:07 PM
9
openbugbounty
openbugbounty

buro247.mn XSS vulnerability

Open Bug Bounty ID: OBB-692105 Description| Value ---|--- Affected Website:| buro247.mn Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-29 04:41 PM
31
openbugbounty
openbugbounty

art-market.com.ua XSS vulnerability

Open Bug Bounty ID: OBB-691377 Description| Value ---|--- Affected Website:| art-market.com.ua Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-28 12:34 AM
9
openbugbounty
openbugbounty

denblaaplanet.dk XSS vulnerability

Open Bug Bounty ID: OBB-691090 Description| Value ---|--- Affected Website:| denblaaplanet.dk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-26 11:13 PM
7
openbugbounty
openbugbounty

domusacademy.com XSS vulnerability

Open Bug Bounty ID: OBB-690794 Description| Value ---|--- Affected Website:| domusacademy.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...

AI Score

2018-10-25 09:18 PM
7
wired
wired

Don't Believe Everything You See About the Migrant Caravan

A migrant caravan traveling through Mexico is the latest news event to be weaponized...

1.7AI Score

2018-10-24 12:16 AM
112
nvd
nvd

CVE-2018-7911

Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...

4.6CVSS

4.7AI Score

0.001EPSS

2018-10-23 02:29 PM
1
cve
cve

CVE-2018-7911

Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...

4.6CVSS

4.8AI Score

0.001EPSS

2018-10-23 02:29 PM
27
prion
prion

Security feature bypass

Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...

4.6CVSS

4.8AI Score

0.001EPSS

2018-10-23 02:29 PM
3
cvelist
cvelist

CVE-2018-7911

Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...

4.7AI Score

0.001EPSS

2018-10-23 02:00 PM
wired
wired

Apple Data Downloads, A Dating App for Trump Fans, and More Security News This Week

North Korean bitcoin theft, Fake FCC complaints, and more security news this...

2.2AI Score

2018-10-20 01:00 PM
108
nvd
nvd

CVE-2018-7989

Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...

4.6CVSS

4.8AI Score

0.001EPSS

2018-10-17 03:29 PM
prion
prion

Authentication flaw

Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...

4.6CVSS

4.9AI Score

0.001EPSS

2018-10-17 03:29 PM
3
cve
cve

CVE-2018-7989

Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...

4.6CVSS

4.9AI Score

0.001EPSS

2018-10-17 03:29 PM
20
cvelist
cvelist

CVE-2018-7989

Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...

4.9AI Score

0.001EPSS

2018-10-17 03:00 PM
wired
wired

Robert Mueller Has Already Told You Everything You Need To Know

With the exception of President Trump’s legal team, no one has been watching the Mueller investigation more closely than Garrett...

2.5AI Score

2018-10-14 02:12 AM
93
wired
wired

Kanye's Password, a WhatsApp Bug, and More Security News This Week

A grey hat hacking hero, bad boat news, and more security news this...

0.4AI Score

2018-10-13 01:00 PM
105
wired
wired

Pentagon Weapons Systems Are Easy Cyberattack Targets, New Report Finds

A new report says the Department of Defense "likely has an entire generation of systems that were designed and built without adequately considering...

2.6AI Score

2018-10-10 02:40 PM
45
Total number of security vulnerabilities2152