900 matches found
EUVD-2022-33191
Malicious code in bioql PyPI...
EUVD-2025-25593
Malicious code in bioql PyPI...
EUVD-2023-34149
Malicious code in bioql PyPI...
CVE-2025-22415
In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-32320
In System UI, there is a possible way to view other users' images due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-32320
CVE-2025-32320 affects Android System UI and describes a confused-deputy issue that can lead to local elevation of privilege: an attacker could view other users’ images without extra execution privileges or user interaction. Affected component is Android System UI; root cause is improper access c...
CVE-2025-21029
Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...
PT-2025-36241
Name of the Vulnerable Software and Affected Versions: Android System UI affected versions not specified Description: A confused deputy condition exists in Android System UI that may allow applications to gain elevated privileges. This could lead to local escalation of privilege without requiring...
CVE-2025-22415
In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-22415
In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-22415
In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-22415
In androidapp of Android.bp, there is a possible way to launch any activity as a system user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2025-22415
CVE-2025-22415 affects Android Wear OS devices and is described as a local elevation-of-privilege in the android_app component of Android.bp, where there is a path to launch any activity as a system user without user interaction. The root cause is tied to the System component behavior in Wear OS/...
Google Wear OS 安全漏洞
Google Wear OS is a Google-developed operating system from Google, Inc. in the United States, specifically designed for use in smartwatches, smart bands, and other wearable devices. Google Wear OS suffers from a security vulnerability that stems from the ability to initiate arbitrary activities a...
PT-2025-36086
Name of the Vulnerable Software and Affected Versions: android app affected versions not specified Description: A flaw exists in android app of Android.bp that may allow launching any activity as a system user. Successful exploitation could lead to local privilege escalation without requiring...
CVE-2025-21029
Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...
CVE-2025-21029
Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...
CVE-2025-21029
Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display...
CVE-2025-50674
An issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowing local authenticated attackers to escalate privileges to root...
openmediavault 安全漏洞
openmediavault is openmediavault open source a Debian Linux based network storage NAS solution. It includes services such as SSH, SFTP, SMB / CIFS, DAAP media server, RSync, BitTorrent client and more. Due to the modular design of the framework, it can be enhanced with plugins. A security...