CVE-2025-10721 Webull Investing & Trading App AndroidManifest.xml improper export of android application components

A vulnerability was determined in Webull Investing & Trading App 11.2.5.63 on Android. This vulnerability affects unknown code of the file AndroidManifest.xml. This manipulation causes improper export of android application components. The attack can only be executed locally. The exploit has been...

CVE-2025-10718 Ooma Office Business Phone App com.ooma.office2 improper export of android application components

A vulnerability was found in Ooma Office Business Phone App up to 7.2.2 on Android. This affects an unknown part of the component com.ooma.office2. The manipulation results in improper export of android application components. The attack needs to be approached locally. The exploit has been made...

CVE-2025-10718

CVE-2025-10718 affects the Ooma Office Business Phone App for Android up to version 7.2.2, specifically the com.ooma.office2 component. The root cause is improper export of Android application components, enabling local exploitation. The vulnerability has publicly available exploit details and ca...

CVE-2025-10717

A vulnerability has been found in intsig CamScanner App 6.91.1.5.250711 on Android. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.intsig.camscanner. The manipulation leads to improper export of android application components. Local acces...

CVE-2025-10717 intsig CamScanner App com.intsig.camscanner AndroidManifest.xml improper export of android application components

A vulnerability has been found in intsig CamScanner App 6.91.1.5.250711 on Android. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.intsig.camscanner. The manipulation leads to improper export of android application components. Local acces...

CVE-2025-10715 APEUni PTE Exam Practice App com.ape_edication AndroidManifest.xml improper export of android application components

A security flaw has been discovered in APEUni PTE Exam Practice App up to 10.8.0 on Android. The impacted element is an unknown function of the file AndroidManifest.xml of the component com.apeedication. The manipulation results in improper export of android application components. The attack...

CVE-2025-10715

CVE-2025-10715 affects APEUni PTE Exam Practice App on Android up to version 10.8.0. Root cause: improper export of Android components due to an issue in AndroidManifest.xml for the package com.ape_edication. This enables a local attack; exploit has been released publicly. Remediation: update to ...

CVE-2025-9676

A vulnerability was identified in NCSOFT Universe App up to 1.3.0. Impacted is an unknown function of the file AndroidManifest.xml of the component com.ncsoft.universeapp. The manipulation leads to improper export of android application components. Local access is required to approach this attack...

CVE-2025-9677

A security flaw has been discovered in Modo Legend of the Phoenix up to 1.0.5. The affected element is an unknown function of the file AndroidManifest.xml of the component com.duige.hzw.multilingual. The manipulation results in improper export of android application components. The attack needs t...

CVE-2025-9675

The CVE-2025-9675 entry affects the Voice Changer App up to version 1.1.0 and specifically the AndroidManifest.xml handling in the component com.tuyangkeji.changevoice. The underlying issue is improper export of Android application components due to some unknown processing of that manifest file, ...

CVE-2025-9672

The CVE-2025-9672 entry affects Rejseplanen App (package de.hafas.android.rejseplanen) up to version 8.2.2. The vulnerability arises from an improper export of AndroidManifest.xml components in the app, enabling a local attack. Public exploit details exist, and there was no response from the vend...

Weee RICEPO App 安全漏洞

Weee RICEPO App is a takeout app from Weee, Inc. A security vulnerability exists in Weee RICEPO App version 6.17.77, which stems from improper export of Android application components...

Huuge Box App 安全漏洞

Huuge Box App is a mobile application from Huuge. A security vulnerability exists in Huuge Box App version 1.0.3, which originates from improper export of Android application components...

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Aug-2025 Release 1, which stems from improper export of Android...

Caixin News App 安全漏洞

Caixin News App is a news app application from China Caixin Caixin News. A security vulnerability exists in Caixin News App version 8.0.1, which originates from an improper export of Android application components due to misuse of the file AndroidManifest.xml in the component com.caixin.news...

CVE-2025-8257 Lobby Universe Lobby App com.maverick.lobby AndroidManifest.xml improper export of android application components

A vulnerability classified as problematic was found in Lobby Universe Lobby App up to 2.8.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.maverick.lobby. The manipulation leads to improper export of android application...

Yeelight App 安全漏洞

Yeelight App is an application for controlling smart lighting products from the Chinese company Yeelight. A security vulnerability exists in Yeelight App 3.5.4 and earlier versions, which originates from the file AndroidManifest.xml that causes improper export of Android components...

SAMSUNG SMR 安全漏洞

SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung cell phone applications. A security vulnerability exists in versions prior to SAMSUNG SMR Jun-2025 Release 1, which stems from improper export of Android application components and...

CVE-2025-20956

Improper export of android application components in Settings in Galaxy Watch prior to SMR May-2025 Release 1 allows physical attackers to access developer settings...

CVE-2025-20955

Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images...