130 matches found
Information disclosure
In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2023-21350
In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...
CVE-2023-21350
CVE-2023-21350 affects Android's Media Projection component. An attacker can infer whether a target app is installed via a side-channel disclosure, without query permissions, enabling local information leakage with no user interaction. Impact is limited to confidentiality (high) per sources; atta...
PT-2023-18126 · Google · Media Projection
Name of the Vulnerable Software and Affected Versions: Media Projection affected versions not specified Description: In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to loc...
CVE-2023-44107
Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity...
Privilege escalation
Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity...
CVE-2023-44107
Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity...
CVE-2023-44107
CVE-2023-44107 relates to Huawei HarmonyOS, specifically a vulnerability in the screen projection module due to defects introduced in the design process. The issue may affect availability and integrity of services. The vulnerability is documented across multiple feeds (NVD and related CVE lists) ...
CVE-2023-44107
Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity...
CVE-2023-37238
Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features...
CVE-2023-37238
Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features...
Design/Logic Flaw
Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features...
CVE-2023-37238
Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features...
CVE-2023-37238
The CVE-2023-37238 entry concerns Huawei HarmonyOS. Affected component: wireless projection module (and related screen casting interfaces). Root cause: incomplete verification of apps’ permission to access a specific API, enabling insufficient permission checks. Impact: exploitation could affect ...
CVE-2023-37238
Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features...
Design/Logic Flaw
Vulnerability of undefined permissions in HUAWEI VR screen projection.Successful exploitation of this vulnerability will cause third-party apps to create windows in an arbitrary way, consuming system resources...
CVE-2023-34154
CVE-2023-34154 affects Huawei HarmonyOS’ VR screen projection component. The vulnerability is described as undefined/ improper permissions that allow third‑party apps to create windows arbitrarily, leading to resource consumption (availability impact). CVSSv3.1 base score 8.2 (HIGH) with network ...
CVE-2023-34154
Vulnerability of undefined permissions in HUAWEI VR screen projection.Successful exploitation of this vulnerability will cause third-party apps to create windows in an arbitrary way, consuming system resources...
PT-2023-24696 · Huawei · Huawei Vr Screen Projection
Name of the Vulnerable Software and Affected Versions: HUAWEI VR screen projection affected versions not specified Description: The issue concerns undefined permissions in HUAWEI VR screen projection, allowing third-party apps to create windows in an arbitrary manner and consume system resources...
Malicious code in capacity-planning-projection (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d7ac9faaa73ac47db42566e3a2cc701408654503c387c47528d9fb69d6545da1 The OpenSSF Package Analysis project identified 'capacity-planning-projection' @ 9.1.3 npm as malicious. It is considered malicious because: - T...