Lucene search
+L

52 matches found

cnnvd
cnnvd
added 2023/11/16 12:0 a.m.4 views

Autel Robotics EVO Nano Series Security Breach

Autel Robotics EVO Nano Series is a series of drones from Autel Robotics. A security vulnerability exists in Autel Robotics EVO Nano Series v1.6.5 that stems from the presence of an insecure privilege that allows an attacker to break through a geofence and fly into a no-fly zone...

6.5CVSS6.8AI score0.00295EPSS
Exploits0References2
osv
osv
added 2023/08/10 2:15 a.m.5 views

CVE-2023-30701

PendingIntent hijacking in WifiGeofenceManager prior to SMR Aug-2023 Release 1 allows local attacker to arbitrary file access...

5.5CVSS5.9AI score0.00125EPSS
Exploits0References1
wired
wired
added 2022/11/28 12:0 p.m.22 views

A Peek Inside the FBI's Unprecedented January 6 Geofence Dragnet

Google provided investigators with location data for more than 5,000 devices as part of the federal investigation into the attack on the US Capitol...

4AI score
Exploits0
osv
osv
added 2022/06/15 2:15 p.m.5 views

CVE-2022-20142

In createFromParcel of GeofenceHardwareRequestParcelable.java, there is a possible arbitrary code execution due to parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS6.3AI score0.00228EPSS
Exploits0References1
rapid7blog
rapid7blog
added 2021/10/29 2:2 p.m.12 views

2022 Planning: Straight Talk on Zero Trust

“Zero trust" is increasingly being heralded as the ultimate solution for organizational cyber safety and resilience — but what does it really mean, and how can you assess if it has a practical place in your organization's cybersecurity strategy for 2022? In this post, we'll answer those questions...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2021/09/22 10:43 a.m.22 views

Google, geofence warrants, and you

Another day, another example of how the data sharing choices we make can come back to haunt us. The Guardian reports a Florida resident finding his bike ride data requested by law enforcement. This is due to his route taking him close to the scene of a burglary a year earlier. According to the...

6.8AI score
Exploits0
wired
wired
added 2021/08/27 10:19 p.m.30 views

Explosion in Geofence Warrants Threatens Privacy Nationwide

New figures from Google show a tenfold increase in the requests from law enforcement, which target anyone who happened to be in a given location at a specified time...

0.8AI score
Exploits0
wired
wired
added 2020/09/04 11:0 a.m.12 views

Creepy ‘Geofence’ Finds Anyone Who Went Near a Crime Scene

Police increasingly ask Google and other tech firms for data about who was where, when. Two judges ruled the investigative tool invalid in a Chicago case...

1AI score
Exploits0
schneier
schneier
added 2020/01/28 12:53 p.m.37 views

Google Receives Geofence Warrants

Sometimes it's hard to tell the corporate surveillance operations from the government ones: Google reportedly has a database called Sensorvault in which it stores location data for millions of devices going back almost a decade. The article is about geofence warrants, where the police go to...

0.8AI score
Exploits0
thn
thn
added 2019/04/24 2:47 p.m.16 views

Congress Asks Google 10 Questions On Its Location Tracking Database

U.S. Congress has sent an open letter to Google CEO Sundar Pichai asking for more information about its Sensorvault database that's reportedly being used by law enforcement agencies to solve crime cases. Last week, we reported a story based upon NY Times findings that revealed how using a...

6.5AI score
Exploits0
thn
thn
added 2019/04/15 11:56 a.m.87 views

Google Helps Police Identify Devices Close to Crime Scenes Using Location Data

It's no secret that Google tracks you everywhere, even when you keep Google's Location History feature disabled. As revealed by an Associated Press investigation in 2018, other Google apps like Maps or daily weather update service on Android allows the tech giant to continuously collect your...

0.1AI score
Exploits0
hackerone
hackerone
added 2017/10/21 4:48 a.m.55 views

Uber: No rate limiting on https://biz.uber.com/confirm allowed an attacker to join arbitrary business.uber.com accounts

A lack of rate limiting on the "/confirm" endpoint made it possible for an attacker to add themselves to arbitrary business.uber.com accounts by brute forcing confirmation codes. If they were able to successfully brute force the correct confirmation code, this would allow an attacker to take ride...

1.9AI score
Exploits0
Rows per page
Query Builder