12 matches found
CVE-2026-3669
A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the function AlarmService of the component com.dgen.alarm. Such manipulation leads to improper authorization. The attack needs to be performed locally. The exploit has been disclosed publicly and may ...
CVE-2026-3669
A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the function AlarmService of the component com.dgen.alarm. Such manipulation leads to improper authorization. The attack needs to be performed locally. The exploit has been disclosed publicly and may ...
CVE-2026-3669 Freedom Factory dGEN1 com.dgen.alarm AlarmService improper authorization
A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the function AlarmService of the component com.dgen.alarm. Such manipulation leads to improper authorization. The attack needs to be performed locally. The exploit has been disclosed publicly and may ...
Freedom Factory dGEN1 授权问题漏洞
The Freedom Factory dGEN1 is a Ethereum mobile device produced by the Freedom Factory company. Versions of the Freedom Factory dGEN1 dated 20260221 and earlier have a licensing issue vulnerability. This vulnerability stems from incorrect operations on the AlarmService function in the com.dgen.ala...
PT-2026-23880
A security vulnerability has been detected in Freedom Factory dGEN1 up to 20260221. This impacts the function AlarmService of the component com.dgen.alarm. Such manipulation leads to improper authorization. The attack needs to be performed locally. The exploit has been disclosed publicly and may ...
EUVD-2017-11837
Malware in sbrugna...
CVE-2017-2694
The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...
CVE-2017-2694
The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...
Code injection
The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...
CVE-2017-2694
The CVE-2017-2694 issue affects Huawei HwVmall’s AlarmService prior to version 1.5.2.0. Root cause: AlarmService does not enforce invocation permissions, allowing any third‑party app to call it. Impact: an attacker could trigger alert music unexpectedly, degrading user experience. Evidence in mul...
CVE-2017-2694
The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...
Huawei HwVmall Local Security Bypass Vulnerability
Huawei HwVmall is a set of e-commerce platform for national service. A security vulnerability exists in the AlarmService service component in Huawei HwVmall versions prior to 1.5.2.0. The vulnerability stems from the fact that the program does not have invocation privilege control, and can be...