CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number...

6.2CVSS6.8AI score0.00043EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:59 p.m.•3 views

CVE-2020-0331

In Settings, there is a possible permissions bypass. This could lead to local information disclosure of the device's IMEI with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-147309310...

5.5CVSS6.2AI score0.00014EPSS

Exploits0References1

RedhatCVE•added 2025/02/08 6:51 a.m.•3 views

CVE-2024-36555

Built-in SMS-configuration command in Forever KidsWatch Call Me KW50 R36YDRA3PWGM7SV1.02019071516.19.24cobh and Forever KidsWatch Call Me 2 KW-60 R36CWYDES4A292V1.02023.05.2422.49.44cobb allows malicious users to change the device IMEI-number which allows for forging the identity of the device...

9.8CVSS6.9AI score0.00112EPSS

Exploits0References3

CVE•added 2025/02/06 12:0 a.m.•45 views

CVE-2024-36555

CVE-2024-36555 affects Forever KidsWatch Call Me KW50 and KW-60. The issue stems from a built-in SMS-configuration command that allows unverified SMS privileges to change the device IMEI, enabling forging the device identity. Affected components: the SMS configuration pathway in the COB_h/COB_b v...

9.8CVSS7.2AI score0.00112EPSS

Exploits0References1

Positive Technologies•added 2024/04/22 12:0 a.m.•1 views

PT-2024-12704 · Nokia +2 · Nokia C200 +3

Name of the Vulnerable Software and Affected Versions: AT&T Calypso version ATT/U318AA/U318AA:10/QP1A.190711.020/1632369780:user/release-keys Nokia C100 versions Nokia/DrakeLite 02US/DKT:12/SP1A.210812.016/02US 1 190:user/release-keys through Nokia/DrakeLite 02US/DKT:12/SP1A.210812.016/02US 1...

5.5CVSS6.3AI score0.00051EPSS

Exploits0References4

NVD•added 2022/10/07 3:15 p.m.•10 views

CVE-2022-39876

Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01.13 allows attacker to access device IMEI...

5.9CVSS0.00069EPSS

Exploits0References1

ATTACKERKB•added 2022/10/07 3:15 p.m.•2 views

CVE-2022-39876

Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01.13 allows attacker to access device IMEI...

5.9CVSS5.8AI score0.00069EPSS

Exploits0References2

Prion•added 2022/10/07 3:15 p.m.•7 views

Information disclosure

Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01.13 allows attacker to access device IMEI...

1.7CVSS4.1AI score0.00069EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/10/07 12:0 a.m.•12 views

CVE-2022-39876

Insertion of Sensitive Information into Log in PushRegIdUpdateClient of SReminder prior to 8.2.01.13 allows attacker to access device IMEI...

5.9CVSS5.9AI score0.00069EPSS

Exploits0References1

Prion•added 2022/09/09 3:15 p.m.•13 views

Design/Logic Flaw

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number...

2.1CVSS6.2AI score0.00043EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/09/09 2:40 p.m.•16 views

CVE-2022-36874

Improper Handling of Insufficient Permissions or Privileges vulnerability in Waterplugin prior to 2.2.11.22040751 allows attacker to access device IMEI and Serial number...

5.9CVSS6.5AI score0.00043EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by