36 matches found
CVE-2021-0889
In Android TV , there is a possible silent pairing due to lack of rate limiting in the pairing flow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12...
CVE-2021-0889
The CVE-2021-0889 entry concerns Android TV Remote Service where a silent pairing due to no rate-limiting in the pairing flow can enable remote code execution without user interaction. Affected products include Android TV on Android 8.1, 9, 10, 11, and 12. The root cause cited is lack of rate lim...
Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks
Google has rolled out its monthly security patches for Android with fixes for 39 flaws, including a zero-day vulnerability that it said is being actively exploited in the wild in limited, targeted attacks. Tracked as CVE-2021-1048, the zero-day bug is described as a use-after-free vulnerability i...
Google patches zero-day vulnerability, and others, in Android
Google has issued security patches for the Android Operating System. In total, the patches address 39 vulnerabilities. There are indications that one of the patched vulnerabilities may be under limited, targeted exploitation. The most severe of these issues is a critical security vulnerability in...
Google Android 安全漏洞
Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. A remote code execution vulnerability exists in the Android TV Remote Service component of Google Android, which can be exploited by an attacker to achieve remote...
ASB-A-180745296
In Android TV , there is a possible silent pairing due to lack of rate limiting in the pairing flow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...
Android 12 Security Release NotesStay organized with collectionsSave and categorize content based on your preferences.
This Android Security Release Notes contains details of security vulnerabilities affecting Android devices which are addressed as part of Android 12. Android 12 devices with a security patch level of 2021-10-01 or later are protected against these issues Android 12, as released on AOSP, will have...
PT-2020-16915
Name of the Vulnerable Software and Affected Versions TCL Android Smart TV series V8-R851T02-LF1 versions V295 and below TCL Android Smart TV series V8-T658T01-LF1 versions V373 and below Description A local unprivileged attacker, such as a malicious App, can read and write to the /data/vendor/tc...
New malware found targeting IoT devices, Android TV globally
By Sudais Asif The malware has been active since May 2019 but its new variant targets both macOS and Android-based devices. This is a post from HackRead.com Read the original post: New malware found targeting IoT devices, Android TV globally...
Security Bulletin: NVIDIA GeForce NOW - September 2020
NVIDIA has released a software security update for NVIDIA® GeForce NOW™ application software. This update addresses security issues that may lead to information disclosure. To protect your system, open the GeForce NOW application to automatically download the security update and follow the...
Google Android elevation of privilege vulnerability (CNVD-2021-30158)
Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. System is one of the system components.VPN is one of the VPN Virtual Private Network components.Email is one of the email components. Android/Pixel has a security vulnerability that...
Android TV exposed the bug or cause of the user's private photos leaked-vulnerability warning-the black bar safety net
Recently, Twitter users prashanth broke the news, said he found the Android TV's a bug, or lead to users private photos being leaked. When he connected to a Vu Android TV, and select the“switch to another account”, turned out to be able to view all with this TV the name of the person and the...
Lucy Gang Debuts with Unusual Android MaaS Package
There’s a fresh bloom in the malware-as-a-service garden: Researchers have uncovered a new Russian-speaking threat actor hawking a proprietary cyber-weapon dubbed “Black Rose Lucy.” The offering is a malware-as-a-service MaaS bundle with two parts, consisting of a controlling web interface which...
Android TV Remote Control - Customized SSL, Exported components, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Android TV Remote Control published at the 'play' market has multiple vulnerabilities...
Das Erste Android TV - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Das Erste Android TV published at the 'play' market has multiple vulnerabilities...
Web Browser for Android TV - External URLs, Possible privilege escalation, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application Web Browser for Android TV published at the 'play' market has multiple vulnerabilities...