6 matches found
EUVD-2021-28301
Malicious code in bioql PyPI...
CVE-2023-21466
PendingIntent hijacking vulnerability in CertificatePolicy in framework prior to SMR Apr-2023 Release 1 allows local attackers to access contentProvider without proper permission...
PT-2024-12983 · Motorola · Motorola Face Unlock
Name of the Vulnerable Software and Affected Versions: Motorola Face Unlock affected versions not specified Description: A PendingIntent hijacking issue was reported in the Motorola Face Unlock application, allowing a local attacker to access unauthorized content providers. Recommendations: At th...
CVE-2023-44129
The vulnerability is that the Messaging "com.android.mms" app patched by LG forwards attacker-controlled intents back to the attacker in the exported "com.android.mms.ui.QClipIntentReceiverActivity" activity. The attacker can abuse this functionality by launching this activity and then sending a...
CVE-2022-20358
In startSync of AbstractThreadedSyncAdapter.java, there is a possible way to access protected content of content providers due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for...
Samsung Galaxy Store 授权问题漏洞
Samsung Mobile Samsung Galaxy Store is an application store of Samsung Mobile, a South Korean company. A security vulnerability in SamsungAccountSDKSigninActivity in Samsung Galaxy Store versions prior to 4.5.32.4 allows an attacker to exploit the vulnerability to access the Galaxy Store's conten...