18 matches found
EUVD-2023-59112
Malicious code in bioql PyPI...
EUVD-2023-46910
Malicious code in bioql PyPI...
CVE-2023-42470
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
CVE-2023-6913
A session hijacking vulnerability has been detected in the Imou Life application affecting version 6.7.0. This vulnerability could allow an attacker to hijack user accounts due to the QR code functionality not properly filtering codes when scanning a new device and directly running WebView withou...
CVE-2023-6913
A session hijacking vulnerability has been detected in the Imou Life application affecting version 6.7.0. This vulnerability could allow an attacker to hijack user accounts due to the QR code functionality not properly filtering codes when scanning a new device and directly running WebView withou...
CVE-2023-6913 Session Hijacking on Imou Life app
A session hijacking vulnerability has been detected in the Imou Life application affecting version 6.7.0. This vulnerability could allow an attacker to hijack user accounts due to the QR code functionality not properly filtering codes when scanning a new device and directly running WebView withou...
CVE-2023-6913
The CVE-2023-6913 entry relates to Imou Life (v6.7.0) and describes a session hijacking issue caused by the QR code flow not filtering codes when pairing a new device, which can trigger WebView to run without user prompt. The result is potential user account takeovers and phishing via the affecte...
PT-2023-32821 · Imou · Imou Life
Name of the Vulnerable Software and Affected Versions: Imou Life version 6.7.0 Description: A session hijacking issue has been detected in the Imou Life application. This issue could allow an attacker to hijack user accounts due to the QR code functionality not properly filtering codes when...
Imou Life Authorization Issues Vulnerability
Imou Life is a software application. Imou Life version 6.7.0 suffers from an authorization issue vulnerability that stems from the presence of a session hijacking vulnerability. An attacker can exploit this vulnerability to launch a phishing attack...
CVE-2023-42470
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
CVE-2023-42470
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
CVE-2023-42470
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
Remote code execution
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
CVE-2023-42470
The CVE-2023-42470 entry concerns the Imou Life app (com.mm.android.smartlifeiot) for Android, version up to 6.8.0. The underlying issue is Remote Code Execution via a crafted intent to an exported component, specifically com.mm.android.easy4ip.MainActivity. The vulnerability is facilitated by a ...
CVE-2023-42470
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
CVE-2023-42470
The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...
PT-2023-28360 · Imou Life · Imou Life
Name of the Vulnerable Software and Affected Versions: Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android Description: The issue allows Remote Code Execution via a crafted intent to an exported component, specifically relating to the com.mm.android.easy4ip.MainActivity...
Imou Life Code Injection Vulnerability
Imou Life is a software application. A security vulnerability exists in the Imou Life com.mm.android.smartlifeiot application version 6.8.0 and earlier versions. An attacker can exploit the vulnerability to remotely execute code...