Lucene search
K

83 matches found

ATTACKERKB
ATTACKERKB
added 2022/09/09 3:15 p.m.3 views

CVE-2022-36866

Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S12, 13.0.6.14 in Android R11 and below allows attackers to identify the device...

4CVSS5.8AI score0.00173EPSS
Exploits0References3
OSV
OSV
added 2022/09/09 3:15 p.m.4 views

CVE-2022-36866

Improper access control vulnerability in Broadcaster in Group Sharing prior to versions 13.0.6.15 in Android S12, 13.0.6.14 in Android R11 and below allows attackers to identify the device...

3.3CVSS5.8AI score0.00173EPSS
Exploits0References1
Prion
Prion
added 2022/09/09 3:15 p.m.16 views

Information disclosure

Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log...

1.7CVSS4AI score0.00221EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/09/09 2:39 p.m.52 views

CVE-2022-36877

Samsung Members before 4.3.00.11 (Global) and before 14.0.02.4 (China) expose sensitive information in FaqSymptomCardViewModel via logs, enabling local attackers to access device identification. The issue is confirmed across multiple sources (including PT-2022-23681) with a local attack vector an...

3.3CVSS4AI score0.00221EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/09/09 2:39 p.m.22 views

CVE-2022-36877

Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log...

2.8CVSS4.2AI score0.00221EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/08/12 12:0 a.m.6 views

The vulnerabilities of the web server of the microprogramming software for communication modules CP-8000 MASTER MODULE WITH I/O, CP-8021 MASTER MODULE (6MF2802-1AA00), CP-8022 MASTER MODULE WITH GPRS (6MF2802-2AA00) allow attackers to identify the devices used in the network.

The vulnerability of web-servers of microprogramming software for communication modules, such as CP-8000 MASTER MODULE WITH I/O, CP-8021 MASTER MODULE 6MF2802-1AA00, and CP-8022 MASTER MODULE WITH GPRS 6MF2802-2AA00, is related to deficiencies in access control. Exploiting these vulnerabilities...

7.8CVSS7.2AI score0.00578EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/12 2:15 p.m.2 views

CVE-2022-33707

Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify the device...

5.3CVSS5.8AI score0.00762EPSS
Exploits0References2
OSV
OSV
added 2022/07/12 2:15 p.m.3 views

CVE-2022-33707

Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify the device...

5.3CVSS5.8AI score0.00762EPSS
Exploits0References1
NVD
NVD
added 2022/07/12 2:15 p.m.20 views

CVE-2022-33707

Improper identifier creation logic in Find My Mobile prior to version 7.2.24.12 allows attacker to identify the device...

5.3CVSS0.00762EPSS
Exploits0References1
CVE
CVE
added 2022/07/11 1:37 p.m.58 views

CVE-2022-33707

CVE-2022-33707 affects Samsung Find My Mobile before version 7.2.24.12. The vulnerability stems from improper identifier creation logic, enabling an attacker to identify a target device. The issue is documented across multiple feeds (NVD, Red Hat, CNVD, CVE records) with the same description. No ...

5.3CVSS5.2AI score0.00762EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/05/05 12:0 a.m.5 views

HUAWEI HarmonyOS 安全漏洞

HUAWEI HarmonyOS is an operating system from the Chinese company Huawei HUAWEI. It provides a full-scenario distributed operating system based on a microkernel. An authorization issue vulnerability exists in the HUAWEI HarmonyOS kernel, which stems from improper control of permissions in the...

5.3CVSS5.8AI score0.0051EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2022/01/31 3:38 p.m.23 views

Your Graphics Card Fingerprint Can Be Used to Track Your Activities Across the Web

Researchers have demonstrated a new type of fingerprinting technique that exploits a machine's graphics processing unit GPU as a means to persistently track users across the web. Dubbed DrawnApart, the method "identifies a device from the unique properties of its GPU stack," researchers from...

6.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/12/22 12:0 a.m.5 views

The vulnerability of the microprogrammed Ethernet module software WISE-4060 and Adam-6050 D, due to insufficient validation of input data, allows attackers to identify the devices used in the network.

The vulnerability of the microprogrammed Ethernet module WISE-4060 and Adam-6050 D lies in insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to identify the devices used in the network through a specially crafted network packet...

5.3CVSS5.5AI score
Exploits0References2Affected Software1
Akamai Blog
Akamai Blog
added 2021/02/01 1:0 p.m.64 views

Akamai + Fingerbank: How an open source community can transform security

Isn't it amazing how seemingly simple decisions can have far-reaching effects? When the Inverse team in Montreal took over PacketFence in 2008, it was an open source OS solution. They recognized the inherent value in keeping it as such. In so doing, they didn't just launch a product--they created...

0.9AI score
Exploits0
OSV
OSV
added 2020/09/18 4:15 p.m.3 views

CVE-2020-0331

In Settings, there is a possible permissions bypass. This could lead to local information disclosure of the device's IMEI with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-147309310...

5.5CVSS6.2AI score0.00141EPSS
Exploits0References1
Gitee
Gitee
added 2020/08/05 9:53 a.m.3 views

KITT-Lite

This is an offensive tool for wireless network exploitation. It is a collection of scripts and tools for various wireless-related tasks, including wireless network scanning, device identification, and password cracking. The toolset includes scripts for tasks such as: Wireless network scanning usi...

7AI score
Exploits0
CVE
CVE
added 2020/05/18 4:16 a.m.68 views

CVE-2020-12859

The CVE concerns COVIDSafe’s OpenTrace/BlueTrace protocol (up to v1.0.17). Unnecessary fields in the protocol payload allow a remote attacker to identify a device model by observing cleartext data, enabling re-identification of devices, particularly for less common phone models or in low-density ...

5.3CVSS5.2AI score0.00687EPSS
Exploits0References2Affected Software1
ThreatPost
ThreatPost
added 2019/07/17 5:29 p.m.124 views

Bluetooth Flaws Could Allow Global Tracking of Apple, Windows 10 Devices

Vulnerabilities in the way Bluetooth Low Energy is implemented on devices by manufacturers can open the door to global device tracking for the Windows 10, iOS and macOS devices that incorporate it, according to research from Boston University. An academic team at BU uncovered the flaws, which exi...

0.9AI score
Exploits0References9
Kitploit
Kitploit
added 2019/06/03 12:47 p.m.151 views

PcapXray v2.5 - A Network Forensics Tool To Visualize A Packet Capture Offline As A Network Diagram

PcapXray is a Network Forensics Tool To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction. PcapXray Design Specification Goal: Given a Pcap File, plot a network diagram displaying hosts in the network,...

6.8AI score
Exploits0References1
CNVD
CNVD
added 2018/08/31 12:0 a.m.7 views

Google Android Information Disclosure Vulnerability (CNVD-2025-00305)

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. There is a security vulnerability in Android. An attacker can use this vulnerability to bypass privilege detection with the help of WiFi broadcasting and disclose information abou...

7.5CVSS6.1AI score0.00987EPSS
Exploits5References1
Rows per page
Query Builder