464 matches found
EUVD-2019-18812
Malware in sbrugna...
EUVD-2025-26800
Malicious code in bioql PyPI...
EUVD-2023-25522
Malicious code in bioql PyPI...
EUVD-2021-6476
Malicious code in bioql PyPI...
EUVD-2025-26860
Malicious code in bioql PyPI...
EUVD-2022-36724
Malicious code in bioql PyPI...
EUVD-2024-29212
Malicious code in bioql PyPI...
EUVD-2025-25853
Malicious code in bioql PyPI...
EUVD-2023-25494
Malicious code in bioql PyPI...
EUVD-2022-45841
Malicious code in bioql PyPI...
CVE-2025-59353 Manager generates mTLS certificates for arbitrary IP addresses
Dragonfly is an open source P2P-based file distribution and image acceleration system. Prior to 2.1.0, a peer can obtain a valid TLS certificate for arbitrary IP addresses, effectively rendering the mTLS authentication useless. The issue is that the Manager’s Certificate gRPC service does not...
Linux Distros Unpatched Vulnerability : CVE-2024-0048
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Session of AccountManagerService.java, there is a possible method to retain foreground service privileges due to incorrect handling of null responses. This...
Linux Distros Unpatched Vulnerability : CVE-2016-6718
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the Account Manager Service in Android 7.0 before 2016-11-01 could enable a local malicious application to retrieve...
Linux Distros Unpatched Vulnerability : CVE-2016-2497
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, a...
Linux Distros Unpatched Vulnerability : CVE-2024-0053
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In getCustomPrinterIcon of PrintManagerService.java, there is a possible way to view other user's images due to a confused deputy. This could lead to local...
CVE-2025-48545
In isSystemUid of AccountManagerService.java, there is a possible way for an app to access privileged APIs due to a confused deputy. This could lead to local privilege escalation with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-48538
In setApplicationHiddenSettingAsUser of PackageManagerService.java, there is a possible way to hide a system critical package due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitatio...
CVE-2025-48542
In multiple functions of AccountManagerService.java, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-48552
In saveGlobalProxyLocked of DevicePolicyManagerService.java, there is a possible way to desync from persistence due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-48545
In isSystemUid of AccountManagerService.java, there is a possible way for an app to access privileged APIs due to a confused deputy. This could lead to local privilege escalation with no additional execution privileges needed. User interaction is not needed for exploitation...