Lucene search
+L

36 matches found

cvelist
cvelist
added 2021/12/15 6:5 p.m.38 views

CVE-2021-0889

In Android TV , there is a possible silent pairing due to lack of rate limiting in the pairing flow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12...

9.3AI score0.01602EPSS
Exploits0References1
cve
cve
added 2021/12/15 6:5 p.m.144 views

CVE-2021-0889

The CVE-2021-0889 entry concerns Android TV Remote Service where a silent pairing due to no rate-limiting in the pairing flow can enable remote code execution without user interaction. Affected products include Android TV on Android 8.1, 9, 10, 11, and 12. The root cause cited is lack of rate lim...

10CVSS9.2AI score0.01602EPSS
Exploits0References1Affected Software1
thn
thn
added 2021/11/03 5:20 a.m.154 views

Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks

Google has rolled out its monthly security patches for Android with fixes for 39 flaws, including a zero-day vulnerability that it said is being actively exploited in the wild in limited, targeted attacks. Tracked as CVE-2021-1048, the zero-day bug is described as a use-after-free vulnerability i...

10CVSS8.2AI score0.12084EPSS
Exploits2
malwarebytes
malwarebytes
added 2021/11/02 4:48 p.m.144 views

Google patches zero-day vulnerability, and others, in Android

Google has issued security patches for the Android Operating System. In total, the patches address 39 vulnerabilities. There are indications that one of the patched vulnerabilities may be under limited, targeted exploitation. The most severe of these issues is a critical security vulnerability in...

10CVSS8.7AI score0.03057EPSS
Exploits0
cnnvd
cnnvd
added 2021/11/01 12:0 a.m.7 views

Google Android 安全漏洞

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. A remote code execution vulnerability exists in the Android TV Remote Service component of Google Android, which can be exploited by an attacker to achieve remote...

10CVSS6.8AI score0.01602EPSS
Exploits0References5
osv
osv
added 2021/11/01 12:0 a.m.64 views

ASB-A-180745296

In Android TV , there is a possible silent pairing due to lack of rate limiting in the pairing flow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS9.4AI score0.01602EPSS
Exploits0References1
androidsecurity
androidsecurity
added 2021/09/20 12:0 a.m.61 views

Android 12 Security Release NotesStay organized with collectionsSave and categorize content based on your preferences.

This Android Security Release Notes contains details of security vulnerabilities affecting Android devices which are addressed as part of Android 12. Android 12 devices with a security patch level of 2021-10-01 or later are protected against these issues Android 12, as released on AOSP, will have...

7.8CVSS9AI score0.00856EPSS
Exploits1
ptsecurity
ptsecurity
added 2020/11/10 12:0 a.m.5 views

PT-2020-16915

Name of the Vulnerable Software and Affected Versions TCL Android Smart TV series V8-R851T02-LF1 versions V295 and below TCL Android Smart TV series V8-T658T01-LF1 versions V373 and below Description A local unprivileged attacker, such as a malicious App, can read and write to the /data/vendor/tc...

7.8CVSS5.5AI score0.02685EPSS
Exploits2References13
hackread
hackread
added 2020/10/01 6:26 p.m.32 views

New malware found targeting IoT devices, Android TV globally

By Sudais Asif The malware has been active since May 2019 but its new variant targets both macOS and Android-based devices. This is a post from HackRead.com Read the original post: New malware found targeting IoT devices, Android TV globally...

3.5AI score
Exploits0
nvidia
nvidia
added 2020/09/16 12:0 a.m.28 views

Security Bulletin: NVIDIA GeForce NOW - September 2020

NVIDIA has released a software security update for NVIDIA® GeForce NOW™ application software. This update addresses security issues that may lead to information disclosure. To protect your system, open the GeForce NOW application to automatically download the security update and follow the...

7.5CVSS7.5AI score0.0109EPSS
Exploits0Affected Software2
cnvd
cnvd
added 2020/09/15 12:0 a.m.8 views

Google Android elevation of privilege vulnerability (CNVD-2021-30158)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. System is one of the system components.VPN is one of the VPN Virtual Private Network components.Email is one of the email components. Android/Pixel has a security vulnerability that...

10CVSS9.3AI score0.00635EPSS
Exploits0References1
myhack58
myhack58
added 2019/03/06 12:0 a.m.75 views

Android TV exposed the bug or cause of the user's private photos leaked-vulnerability warning-the black bar safety net

Recently, Twitter users prashanth broke the news, said he found the Android TV's a bug, or lead to users private photos being leaked. When he connected to a Vu Android TV, and select the“switch to another account”, turned out to be able to view all with this TV the name of the person and the...

0.9AI score
Exploits0
threatpost
threatpost
added 2018/09/20 9:7 p.m.19 views

Lucy Gang Debuts with Unusual Android MaaS Package

There’s a fresh bloom in the malware-as-a-service garden: Researchers have uncovered a new Russian-speaking threat actor hawking a proprietary cyber-weapon dubbed “Black Rose Lucy.” The offering is a malware-as-a-service MaaS bundle with two parts, consisting of a controlling web interface which...

0.4AI score
Exploits0References2
hackapp
hackapp
added 2016/04/01 9:30 a.m.27 views

Android TV Remote Control - Customized SSL, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Android TV Remote Control published at the 'play' market has multiple vulnerabilities...

0.9AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:11 a.m.7 views

Das Erste Android TV - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Das Erste Android TV published at the 'play' market has multiple vulnerabilities...

2.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:55 a.m.19 views

Web Browser for Android TV - External URLs, Possible privilege escalation, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Web Browser for Android TV published at the 'play' market has multiple vulnerabilities...

1.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder