CVE-2025-68712

SpSoft AppLock (com.sp.protector.free) v7.9.40 for Android is affected. A local attacker with physical access can bypass fingerprint/PIN due to a custom overlay that does not consistently enforce authentication. Cascading interface flows and exposed routes via ads or browser intents allow exiting...

EUVD-2025-209945

SailingLab AppLock aka com.alpha.applock 4.3.8 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface flows - insecure navigation through...

CVE-2025-68711

AppLockZ App Lock and Fingerprint Lock applock.passwordfingerprint.applockz 4.2.11 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface...

CVE-2024-41276

A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code authentication mechanism. The application requires users to input a 6-digit PIN code sent to their email for authorization after entering their login credentials. However, the request limiting mechanis...

GLSA-200908-01 : OpenSC: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200908-01 OpenSC: Multiple vulnerabilities Multiple vulnerabilities were found in OpenSC: b.badrignans discovered that OpenSC incorrectly initialises private data objects CVE-2009-0368. Miquel Comas Marti discovered that...