5 matches found
EUVD-2026-38751
Capgo before 12.128.2 contains an information disclosure vulnerability in the public.existappv2 RPC function that allows unauthenticated attackers to enumerate appids by calling POST /rest/v1/rpc/existappv2 with arbitrary appid parameters. Remote attackers can exploit this SECURITY DEFINER functi...
CVE-2025-48648
In isSameApp of NotificationManagerService.java, there is a possible persistent dos due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
The vulnerability of the App Check software for detecting vulnerabilities in web applications, related to inadequate access control, allows a hacker to execute arbitrary code.
The vulnerability of the App Check tool, which verifies the implementation of application software interfaces, is related to deficiencies in access control. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code...
CVE-2020-0097
In various methods of PackageManagerService.java, there is a possible permission bypass due to a missing condition for system apps. This could lead to local escalation of privilege with User privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9...
Android Play Market 3.9.16 with a Built-In Malware Scanner
AndroidPolice reports that Google is actively working on a built-in malware scanner for the Play Store. A new version of the Play Store app has been released and it is starting to roll out to Android owners. Google Play Store 3.9.16 includes the ability to remove apps from the All Apps list. Ther...