Lucene search
K

47 matches found

Prion
Prion
added 2022/09/09 3:15 p.m.12 views

Authorization

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication...

2.1CVSS3.9AI score0.00323EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/09/09 2:39 p.m.56 views

CVE-2022-36876

Samsung Pass contains a vulnerability in UPI payments (CVE-2022-36876). Prior to version 4.0.04.10, improper authorization allows physical attackers to access the account list without authentication. The PT-2022-23680 entry confirms affected versions and recommends upgrading to 4.0.04.10 or later...

2.4CVSS3.9AI score0.00323EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/09/09 2:39 p.m.30 views

CVE-2022-36876

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication...

1.8CVSS3.9AI score0.00323EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/09 12:0 a.m.4 views

PT-2022-23680 · Samsung · Samsung Pass

Name of the Vulnerable Software and Affected Versions: Samsung Pass versions prior to 4.0.04.10 Description: The issue is related to improper authorization in UPI payment, allowing physical attackers to access the account list without authentication. Recommendations: For versions prior to...

2.4CVSS3.5AI score0.00323EPSS
Exploits0References3
OSV
OSV
added 2022/03/04 12:0 p.m.4 views

RUSTSEC-2022-0103 Incorrect signature verification on gzip-compressed install images

The coreos-installer is a program to fetch a disk image and stream it to a target disk. During the installation process the installation image gpg signatures are verified. The signature verification can be bypassed for gzip-compressed images due to a flaw in gzip coreos-installer wrapper. When th...

7.8CVSS6.9AI score0.00515EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/06/13 5:52 a.m.93 views

CVE-2021-20198

A flaw was found in the OpenShift Installer. During installation of OpenShift Container Platform 4 clusters, bootstrap nodes are provisioned with anonymous authentication enabled on kubelet port 10250. A remote attacker able to reach this port during installation can make unauthenticated /exec...

8.1CVSS3.1AI score0.01833EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2017/01/02 8:51 p.m.20 views

BHIM App — How to Send & Receive Money with UPI

After the lack of supply of cash in India following its Prime Minister step to remove high-denomination banknotes from circulation in November 2016, the country is moving a step closer towards becoming a cashless economy with the launch of Unified Payment Interface UPI. Unified Payment Interface...

6.6AI score
Exploits0
Rows per page
Query Builder