Lucene search
K

236 matches found

BDU FSTEC
BDU FSTEC
added 2024/03/04 12:0 a.m.7 views

The vulnerability of the Microsoft Edge browser’s Push Notification Service on Android operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Microsoft Edge browser’s Push Notification Service on Android operating systems is related to insufficient protection of service-related data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially...

5CVSS5.5AI score0.01243EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/01/04 1:15 a.m.3 views

CVE-2024-20806

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References1
NVD
NVD
added 2024/01/04 1:15 a.m.31 views

CVE-2024-20806

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...

6.2CVSS6.1AI score0.00147EPSS
Exploits0References1
Prion
Prion
added 2024/01/04 1:15 a.m.19 views

Improper access control

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...

1.7CVSS6.8AI score0.00147EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/04 1:10 a.m.51 views

CVE-2024-20806

CVE-2024-20806 concerns Samsung Mobile Devices, specifically an improper access control vulnerability in the Notification service. The issue allows a local attacker to access notification data prior to SMR Jan-2024 Release 1. Connected sources consistently describe the root cause as access contro...

6.2CVSS5.3AI score0.00147EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/04 1:10 a.m.1 views

CVE-2024-20806

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...

6.2CVSS5.8AI score0.00147EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/04 1:10 a.m.33 views

CVE-2024-20806

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...

6.2CVSS6.4AI score0.00147EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/04 12:0 a.m.5 views

SAMSUNG mobile devices security vulnerability

SAMSUNG mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG mobile devices SMR Jan-2024 Release 1 version and earlier versions, which stems from improper access control in the...

6.2CVSS6.3AI score0.00147EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/04 12:0 a.m.4 views

PT-2024-18712 · Samsung · Samsung Mobile Devices

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Jan-2024 Release 1 Description: The issue is related to improper access control in the Notification service, allowing a local attacker to access notification data. Recommendations: For versions pri...

6.2CVSS5.2AI score0.00147EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2023/07/26 12:0 a.m.5 views

July 26, 2023—KB5028254 (OS Build 22621.2070) Preview

July 26, 2023—KB5028254 OS Build 22621.2070 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 22H2, see its update history page. Note Follow @WindowsUpdate to fi...

6.6AI score
Exploits0
OSV
OSV
added 2023/06/29 7:15 p.m.5 views

CVE-2023-30946

A security defect was identified in Foundry Issues. If a user was added to an issue on a resource that they did not have access to and consequently could not see, they could query Foundry's Notification API and receive metadata about the issue including the RID of the issue, severity, internal UU...

4.3CVSS5.8AI score0.00393EPSS
Exploits0References1
OSV
OSV
added 2022/12/24 12:15 a.m.4 views

CVE-2022-38658

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...

7.5CVSS5.6AI score0.00312EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/12/24 12:0 a.m.3 views

HCL Technologies BigFix Server Automation 安全漏洞

HCL Technologies BigFix Server Automation is an endpoint management system from HCL Technologies, USA. A security vulnerability exists in HCL Technologies BigFix Server Automation that stems from its Notification Service that allows an attacker to gain access to sensitive data of SMTP BigFix...

7.7CVSS7.3AI score0.00312EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/12/22 6:52 p.m.31 views

CVE-2022-38658 HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...

7.7CVSS7.7AI score0.00312EPSS
Exploits0References1
CVE
CVE
added 2022/12/22 6:52 p.m.62 views

CVE-2022-38658

CVE-2022-38658 affects HCL BigFix Server Automation deployments that have the Notification Service installed on Windows. The root issue is exposure of SMTP BigFix operators’ sensitive data in cleartext via the Notification Service content from BES Support. Impact is limited to confidentiality, wi...

7.7CVSS7.5AI score0.00312EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/22 6:52 p.m.11 views

CVE-2022-38658 HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service

BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...

7.7CVSS7AI score0.00312EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/22 12:0 a.m.5 views

PT-2022-24507 · Bigfix · Bigfix

Name of the Vulnerable Software and Affected Versions: BigFix affected versions not specified Description: The issue affects BigFix deployments with the Notification Service installed on Windows, making them susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators...

7.7CVSS7.4AI score0.00312EPSS
Exploits0References4
NVD
NVD
added 2022/08/12 11:15 a.m.21 views

CVE-2022-2390

Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service. As Google Play services SDK is so widely used, this bug affects many applications. For an application affected, this bug will let the attacker, gain...

8.4CVSS0.00105EPSS
Exploits0References2
CVE
CVE
added 2022/08/12 10:25 a.m.90 views

CVE-2022-2390

CVE-2022-2390 affects the Google Play Services SDK. The issue stems from the mutability flag on PendingIntents passed to the Notification service, present in SDKs prior to version 18.0.2. This misconfiguration can allow an attacker to access all non-exported providers and/or other providers for w...

8.4CVSS7.3AI score0.00105EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/08/12 10:25 a.m.29 views

CVE-2022-2390 Mutable pending intent in Google Play services SDK

Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service. As Google Play services SDK is so widely used, this bug affects many applications. For an application affected, this bug will let the attacker, gain...

6.1CVSS8.7AI score0.00105EPSS
Exploits0References2
Rows per page
Query Builder