CVE-2020-8988

The Voatz application 2020-01-01 for Android allows only 100 million different PINs, which makes it easier for attackers after using root access to make a copy of the local database to discover login credentials and voting history via an offline brute-force approach...

Security Bulletin: A Security Vulnerability, exists in the Android platform used by the Cordova tools in Rational Application Developer for WebSphere Software (CVE-2015-5256)

Summary A security vulnerability, CVE-2015-5256, has been discovered that affects the Android platform used by the Cordova tools in Rational Application Developer for WebSphere Software. Vulnerability Details CVE-ID: CVE-2015-5256 DESCRIPTION: Apache Cordova Android could allow a remote attacker ...

Security Bulletin: A Security Vulnerability, exists in the Android platform used by the Cordova tools in Rational Application Developer for WebSphere Software (CVE-2015-1835)

Summary A security vulnerability, CVE-2015-1835, has been discovered that affects the Android platform used by the Cordova tools in Rational Application Developer for WebSphere Software. Vulnerability Details CVEID: CVE-2015-1835 DESCRIPTION: The Apache Cordova could allow a remote attacker to...

Security Bulletin: A vulnerability affects the Cordova platform packaged with Rational Application Developer (CVE-2015-8320)

Summary A vulnerability has been discovered that affects the Cordova platform packaged with Rational Application Developer. Vulnerability Details CVEID: CVE-2015-8320 DESCRIPTION: Apache Cordova Android could allow a remote attacker to bypass security restrictions, caused by weak randomization of...

CVE-2019-9359

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111407302...

apng-drawable integer overflow vulnerability

apng-drawable is a lightweight fast animated Portable Network Graphics APNG image decoder for the Android platform. An integer overflow vulnerability in apng-drawable versions 1.0.0 through 1.6.0 can be exploited by an attacker to cause a denial of service and execute arbitrary code...

CVE-2019-13098

The user password via the registration form of TronLink Wallet 2.2.0 is stored in the log when the class CreateWalletTwoActivity is called. Other authenticated users can read it in the log later. The logged data can be read using Logcat on the device. When using platforms prior to Android 4.1 Jel...

CVE-2019-2109

In MakeMPEG4VideoCodecSpecificData of AVIExtractor.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:...

ASUS Vivobaby for Android License Issue Vulnerability

ASUS Vivobaby for Android is an Android-based baby physiological monitor control and management application from Asus Taiwan, China. An authorization issue vulnerability exists in versions of ASUS Vivobaby prior to 1.1.09 for Android-based platforms. The vulnerability stems from a lack of...

CVE-2019-9939

The SHAREit application before 4.0.36 for Android allows a remote attacker on the same network or joining public "open" Wi-Fi hotspots created by the application when file transfer is initiated to bypass authentication by trying to fetch a non-existing page. When the non-existing page is requeste...

CVE-2019-9599

The AirDroid application through 4.2.1.6 for Android allows remote attackers to cause a denial of service service crash via many simultaneous sdctl/comm/liteauth/ requests...

CVE-2018-19111

The Google Cardboard application 1.8 for Android and 1.2 for iOS sends potentially private cleartext information to the Unity 3D Stats web site, as demonstrated by device make, model, and OS...

Unspecified Vulnerability in NoMachine App for Android

NoMachine App for Android is a remote desktop application for the Android platform from NoMachine Luxembourg. A security vulnerability exists in NoMachine App for Android. An attacker can exploit the vulnerability to modify environment variables...

Unspecified vulnerability in BHIM application for Android (CNVD-2019-41445)

BHIM application for Android is an Android platform based mobile payment application by National Payments India. A security vulnerability exists in National Payments Corporation in version 1.3 of the India BHIM application for Android-based platform, which stems from the program not properly...

LG Products GNSS Application Access Control Error Vulnerability

LG devices based on Android are smart devices based on the Android platform from the South Korean LG Group.GNSS application is one of the global satellite navigation applications. A security vulnerability exists in the GNSS application in LG products based on the Android platform versions 6.0 to...

LG Products MLT Application Intents Access Control Error Vulnerability

LG devices based on Android are smart devices based on the Android platform from the South Korean LG Group.SystemUI application intents are one of the system applications. A security vulnerability exists in the MLT application intents in LG products based on Android versions 6.0 to 8.1, which...

Security Bulletin: A Security Vulnerability, exists in the Android platform used by the Cordova tools packaged with Rational Application Developer affecting Rational Developer for i and Rational Developer for AIX and Linux (CVE-2015-1835)

Summary Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i RPG and COBOL + Modernization Tools, Java and EGL editions, and Rational Developer for AIX and Linux. A security vulnerability, CVE-2015-1835, has been discovered...

The vulnerability of the NVIDIA Tegra X1 TZ operating system allows a hacker to increase their privileges.

The vulnerability of the NVIDIA Tegra X1 TZ operating system’s Android platform arises from data writing beyond the buffer in memory. Exploiting this vulnerability can allow attackers to increase their privileges...

Google Android Qualcomm WLAN Privilege Access Control Vulnerability (CNVD-2018-22736)

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA, with Qualcomm WLAN being one of the components used. Qualcomm WLAN is a wireless LAN component developed by Qualco...

Olive Tree Ftp Server application for Android Information Disclosure Vulnerability

Olive Tree Ftp Server application for Android is an application for building FTP servers on the Android platform. A security vulnerability exists in version 1.32 of the Olive Tree Ftp Server application for Android-based platforms, which stems from the program failing to store data securely. No...