236 matches found
The vulnerability of the Microsoft Edge browser’s Push Notification Service on Android operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Microsoft Edge browser’s Push Notification Service on Android operating systems is related to insufficient protection of service-related data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially...
CVE-2024-20806
Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...
CVE-2024-20806
Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...
Improper access control
Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...
CVE-2024-20806
CVE-2024-20806 concerns Samsung Mobile Devices, specifically an improper access control vulnerability in the Notification service. The issue allows a local attacker to access notification data prior to SMR Jan-2024 Release 1. Connected sources consistently describe the root cause as access contro...
CVE-2024-20806
Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...
CVE-2024-20806
Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...
SAMSUNG mobile devices security vulnerability
SAMSUNG mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG mobile devices SMR Jan-2024 Release 1 version and earlier versions, which stems from improper access control in the...
PT-2024-18712 · Samsung · Samsung Mobile Devices
Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Jan-2024 Release 1 Description: The issue is related to improper access control in the Notification service, allowing a local attacker to access notification data. Recommendations: For versions pri...
July 26, 2023—KB5028254 (OS Build 22621.2070) Preview
July 26, 2023—KB5028254 OS Build 22621.2070 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 22H2, see its update history page. Note Follow @WindowsUpdate to fi...
CVE-2023-30946
A security defect was identified in Foundry Issues. If a user was added to an issue on a resource that they did not have access to and consequently could not see, they could query Foundry's Notification API and receive metadata about the issue including the RID of the issue, severity, internal UU...
CVE-2022-38658
BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...
HCL Technologies BigFix Server Automation 安全漏洞
HCL Technologies BigFix Server Automation is an endpoint management system from HCL Technologies, USA. A security vulnerability exists in HCL Technologies BigFix Server Automation that stems from its Notification Service that allows an attacker to gain access to sensitive data of SMTP BigFix...
CVE-2022-38658 HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service
BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...
CVE-2022-38658
CVE-2022-38658 affects HCL BigFix Server Automation deployments that have the Notification Service installed on Windows. The root issue is exposure of SMTP BigFix operators’ sensitive data in cleartext via the Notification Service content from BES Support. Impact is limited to confidentiality, wi...
CVE-2022-38658 HCL BigFix Server Automation (SA) is affected by a security vulnerability around Notification Service
BigFix deployments that have installed the Notification Service on Windows are susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators who use Notification Service related content from BES Support are at risk of leaving their SMTP sensitive data exposed...
PT-2022-24507 · Bigfix · Bigfix
Name of the Vulnerable Software and Affected Versions: BigFix affected versions not specified Description: The issue affects BigFix deployments with the Notification Service installed on Windows, making them susceptible to disclosing SMTP BigFix operator's sensitive data in clear text. Operators...
CVE-2022-2390
Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service. As Google Play services SDK is so widely used, this bug affects many applications. For an application affected, this bug will let the attacker, gain...
CVE-2022-2390
CVE-2022-2390 affects the Google Play Services SDK. The issue stems from the mutability flag on PendingIntents passed to the Notification service, present in SDKs prior to version 18.0.2. This misconfiguration can allow an attacker to access all non-exported providers and/or other providers for w...
CVE-2022-2390 Mutable pending intent in Google Play services SDK
Apps developed with Google Play Services SDK incorrectly had the mutability flag set to PendingIntents that were passed to the Notification service. As Google Play services SDK is so widely used, this bug affects many applications. For an application affected, this bug will let the attacker, gain...