5 matches found
Huawei EMUI和Huawei HarmonyOS 安全漏洞
Huawei EMUI and Huawei HarmonyOS are both products of the Chinese company Huawei. Huawei EMUI is a mobile operating system developed based on Android. Huawei HarmonyOS is an operating system that provides a full-scenario distributed operating system based on a microkernel. Both Huawei EMUI and...
Samsung Members 安全漏洞
Samsung Members is a community platform app from Samsung South Korea, Inc. An access control error vulnerability exists in versions prior to Samsung Members 13.6.08.5, which stems from a lack of proper access validation logic. A local attacker could exploit the vulnerability to execute the call...
PT-2022-19225 · Samsung · Samsung Members
Name of the Vulnerable Software and Affected Versions: Samsung Members versions prior to 13.6.08.5 Description: The issue is related to an improper access control vulnerability. It allows a local attacker to execute a call function without the required CALL PHONE permission. Recommendations: For...
With protectedCall permission funds of other users can be stolen
Handle 0x0x0x Vulnerability details When the diamond has BasketFacet, then following attack is possible: 1- Create a new ERC20 token A with a lot of quantity 2- Lock the basket 3- Send MINAMOUNT many token A to the basket 4- Remove all tokens except token A 5- Unlock the basket 6- Call joinPool a...
Android OS Contacts app fails to restrict access permissions
Overview The Contacts app within the Android OS contains a vulnerability where it fails to restrict access permissions. The Contacts app within the Android OS receives requests for outgoing calls through Intents and calls the Dialer app. The Contacts app contains a vulnerability where it fails to...