36 matches found
EUVD-2018-13557
Malware in sbrugna...
EUVD-2018-7990
Malware in sbrugna...
EUVD-2020-19577
Malware in sbrugna...
EUVD-2021-19772
Malware in sbrugna...
EUVD-2022-52586
Malicious code in bioql PyPI...
EUVD-2022-25375
Malicious code in bioql PyPI...
PT-2025-35618
Name of the Vulnerable Software and Affected Versions: Permissions.java affected versions not specified Description: A logic error in multiple functions within Permissions.java may allow overriding the state of a user’s location permissions. This could lead to local escalation of privilege withou...
CVE-2020-27053
In broadcastWifiCredentialChanged of ClientModeImpl.java, there is a possible location permission bypass due to a missing permission check. This could lead to local information disclosure of the WiFi network name with System execution privileges needed. User interaction is not needed for...
CVE-2018-21039
An issue was discovered on Samsung mobile devices with N7.0 software. With the Location permission for the compass feature in Quick Tools aka QuickTools, an attacker can bypass the lockscreen. The Samsung ID is SVE-2018-12053 December 2018...
CVE-2018-16135
The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site...
CVE-2018-16135
The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site...
Code injection
The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site...
CVE-2018-16135
The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site...
PT-2022-8037 · Opera · Opera Mini
Name of the Vulnerable Software and Affected Versions: Opera Mini version 47.1.2249.129326 Description: The issue allows remote attackers to spoof the Location Permission dialog via a crafted web site. This can be achieved by accessing specific API Endpoints or by manipulating certain variables,...
CVE-2018-16135
The Opera Mini application 47.1.2249.129326 for Android allows remote attackers to spoof the Location Permission dialog via a crafted web site...
CVE-2022-20327
In Wi-Fi, there is a possible way to retrieve the WiFi SSID without location permissions due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-13Androi...
PT-2022-14553 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android version 13 Description: There is a possible way to retrieve the WiFi SSID without location permissions due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User...
CVE-2021-33057
The QQ application 8.7.1 for Android and iOS does not enforce the permission requirements e.g., android.permission.ACCESSFINELOCATION for determining the device's physical location. An attacker can use qq.createMapContext to create a MapContext object, use MapContext.moveToLocation to move the...
CVE-2021-33057
The QQ application 8.7.1 for Android and iOS does not enforce the permission requirements e.g., android.permission.ACCESSFINELOCATION for determining the device's physical location. An attacker can use qq.createMapContext to create a MapContext object, use MapContext.moveToLocation to move the...
PT-2022-10197 · Tencent · Qq
Name of the Vulnerable Software and Affected Versions: QQ application version 8.7.1 Description: The issue concerns the QQ application's failure to enforce permission requirements for determining a device's physical location, such as android.permission.ACCESS FINE LOCATION. An attacker can exploi...