OPPO O+ Connect 安全漏洞

OPPO O+ Connect is a multi-device connectivity and data collaboration platform developed by OPPO Corporation in China. There is a security vulnerability in OPPO O+ Connect, which stems from the failure to verify the identity of the caller on the pipeline interface, potentially leading to an...

EUVD-2020-6288

Malware in sbrugna...

EUVD-2024-49072

Malicious code in bioql PyPI...

CVE-2020-14129

A logic vulnerability exists in a Xiaomi product. The vulnerability is caused by an identity verification failure, which can be exploited by an attacker who can obtain a brief elevation of privilege...

CVE-2023-3601

The Simple Author Box WordPress plugin before 2.52 does not verify a user ID before outputting information about that user, leading to arbitrary user information disclosure to users with a role as low as Contributor...

Privilege escalation

A logic vulnerability exists in a Xiaomi product. The vulnerability is caused by an identity verification failure, which can be exploited by an attacker who can obtain a brief elevation of privilege...

CVE-2020-14129

CVE-2020-14129 concerns a logic vulnerability in a Xiaomi product due to an identity verification failure that enables a brief elevation of privileges. The NVD entry rates it CVSS v3.1 as 9.8 (CRITICAL): attack vector NETWORK, attack complexity LOW, privileges required NONE, user interaction NONE...

Information Disclosure Vulnerability in Multiple Huawei Products (CNVD-2020-68354)

The Huawei P30 Pro, among others, is a smartphone from the Chinese company Huawei Huawei. A number of Huawei products suffer from an information disclosure vulnerability that stems from the failure to adequately verify the identity of a smart wearable device in a particular scenario, where an...

CVE-2019-4158

IBM Security Access Manager 9.0.1 through 9.0.6 does not prove that a user's identity is correct which can lead to the exposure of resources or functionality to unintended actors. IBM X-Force ID: 158574...