6 matches found
CVE-2026-4377
Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not require users to change it. An attacker who knows how passwords are generated can easily crack the default password if they have the device IMEI number. This issue was fixed in version 1.00B16CP...
EUVD-2021-28850
Malicious code in bioql PyPI...
CVE-2021-41849
An issue was discovered in Luna Simo PPR1.180610.011/202001031830. It sends the following Personally Identifiable Information PII in plaintext using HTTP to servers located in China: user's list of installed apps and device International Mobile Equipment Identity IMEI. This PII is transmitted to...
Sierra Wireless AirVantage 安全漏洞
Sierra Wireless AirVantage is an IoT connectivity and management platform from Sierra Wireless Canada. A security vulnerability exists in Sierra Wireless AirVantage. An attacker could exploit the vulnerability to perform bulk enumeration of IMEI and serial number pairs...
China's Baidu Android Apps Caught Collecting Sensitive User Data
Two popular Android apps from Chinese tech giant Baidu were temporarily unavailable on the Google Play Store in October after they were caught collecting sensitive user details. The two apps in question—Baidu Maps and Baidu Search Box —were found to collect device identifiers, such as the...
Yome Collection for Android issue in management of IMEI
Overview Yome Collection for Android contains an issue which stores the International Mobile Equipment Identity IMEI on a SD card. Applications without the READPHONESTATE permission may obtain the IMEI from the SD card. Kazuhiko Kusano of Graduate School of Information Sciences, Tohoku University...