Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

472 matches found

NVD
NVDadded 2024/02/06 3:15 a.m.12 views

CVE-2024-20827

Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical attackers to access the picture using physical keyboard on the lockscreen...

4.6CVSS4.5AI score0.00085EPSS
Exploits0References1
OSV
OSVadded 2024/02/06 3:15 a.m.0 views

CVE-2024-20827

Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical attackers to access the picture using physical keyboard on the lockscreen...

4.6CVSS5.8AI score
Exploits0References1
Prion
Prionadded 2024/02/06 3:15 a.m.14 views

Improper access control

Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical attackers to access the picture using physical keyboard on the lockscreen...

2.1CVSS6.9AI score0.00085EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/02/06 2:23 a.m.12 views

CVE-2024-20827

Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical attackers to access the picture using physical keyboard on the lockscreen...

4.6CVSS6.6AI score0.00085EPSS
Exploits0References1
CVE
CVEadded 2024/02/06 2:23 a.m.35 views

CVE-2024-20827

Summary: Samsung Gallery vulnerable to improper access control, enabling physical attackers to view pictures on the lockscreen via a physical keyboard. Affected software: Samsung Gallery, versions prior to 14.5.04.4. Root cause: improper access control, leading to confidentiality impact (C:H) per...

4.6CVSS4.6AI score0.00085EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/02/06 2:23 a.m.15 views

CVE-2024-20827

Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical attackers to access the picture using physical keyboard on the lockscreen...

4.6CVSS4.9AI score0.00085EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/02/05 12:0 a.m.2 views

PT-2024-18734 · Samsung · Samsung Gallery

Name of the Vulnerable Software and Affected Versions: Samsung Gallery versions prior to 14.5.04.4 Description: The issue is related to improper access control in Samsung Gallery, allowing physical attackers to access pictures using a physical keyboard on the lockscreen. Recommendations: For...

4.6CVSS4.4AI score0.00085EPSS
Exploits0References6
OSV
OSVadded 2023/12/30 7:15 p.m.0 views

CVE-2023-6998

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0...

7.7CVSS5.8AI score0.00012EPSS
Exploits0References3
NVD
NVDadded 2023/12/30 7:15 p.m.10 views

CVE-2023-6998

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0...

7.7CVSS0.00012EPSS
Exploits0References3
Prion
Prionadded 2023/12/30 7:15 p.m.9 views

Privilege escalation

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0...

3.6CVSS6.9AI score0.00012EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2023/12/30 6:32 p.m.14 views

CVE-2023-6998 Lockscreen bypass in eWeLink App

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0...

7.7CVSS7.5AI score0.00012EPSS
Exploits0References3
CVE
CVEadded 2023/12/30 6:32 p.m.41 views

CVE-2023-6998

CVE-2023-6998 describes an improper privilege management vulnerability in CoolKit Technology’s eWeLink app for Android and iOS, where versions prior to 5.2.0 allow a lockscreen bypass. The issue is characterized as a local vulnerability with no user interaction required, potentially affecting con...

7.7CVSS7.3AI score0.00012EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2023/12/30 12:0 a.m.2 views

PT-2023-32834 · Ewelink · Ewelink

Name of the Vulnerable Software and Affected Versions: eWeLink versions prior to 5.2.0 Description: The issue is related to improper privilege management in the eWeLink application on Android and iOS, allowing for application lockscreen bypass. Recommendations: For versions prior to 5.2.0, update...

7.7CVSS7.2AI score0.00012EPSS
Exploits0References12
vulnersOsv
vulnersOsvadded 2023/11/02 8:44 p.m.1 views

ionic-simple-lockscreen-md5 (=0.0.7), ons-mobile-login (=0.0.136) potentially affected by CVE-2021-43849 via cordova-plugin-fingerprint-aio (=1.7.0)

cordova-plugin-fingerprint-aio NPM version =1.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on cordova-plugin-fingerprint-aio and may be impacted: - ionic-simple-lockscreen-md5 =0.0.7 - ons-mobile-login =0.0.136 Source cves: CVE-2021-43849 Source...

6.2CVSS6.1AI score0.00074EPSS
Exploits0
NVD
NVDadded 2023/10/27 9:15 p.m.7 views

CVE-2023-40117

In resetSettingsLocked of SettingsProvider.java, there is a possible lockscreen bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00006EPSS
Exploits0References3
OSV
OSVadded 2023/10/27 9:15 p.m.0 views

CVE-2023-40117

In resetSettingsLocked of SettingsProvider.java, there is a possible lockscreen bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00006EPSS
Exploits0References3
Prion
Prionadded 2023/10/27 9:15 p.m.10 views

Design/Logic Flaw

In resetSettingsLocked of SettingsProvider.java, there is a possible lockscreen bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS7.8AI score0.00006EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2023/10/27 8:22 p.m.153 views

CVE-2023-40117

CVE-2023-40117 affects the Android SettingsProvider.java resetSettingsLocked path and describes a local privilege-escalation via a lockscreen bypass caused by a permissions bypass. The vulnerability enables elevation of privilege with LOCAL attack vector and LOW required privileges, without user ...

7.8CVSS7.7AI score0.00006EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2023/10/27 12:0 a.m.0 views

PT-2023-27275 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a possible lockscreen bypass due to a permissions bypass in the resetSettingsLocked function of SettingsProvider.java. This could lead to local escalation of privile...

7.8CVSS7.5AI score0.00006EPSS
Exploits0References6
OSV
OSVadded 2023/09/27 3:19 p.m.1 views

CVE-2023-44122

The vulnerability is to theft of arbitrary files with system privilege in the LockScreenSettings "com.lge.lockscreensettings" app in the "com/lge/lockscreensettings/dynamicwallpaper/MyCategoryGuideActivity.java" file. The main problem is that the app launches implicit intents that can be...

7.8CVSS5.9AI score
Exploits0References1
Rows per page
Query Builder