Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

34 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-6470

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00015EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2022-25398

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00012EPSS
Exploits0References1
OSV
OSVadded 2025/07/21 3:15 p.m.1 views

CVE-2025-43977

The com.skt.prod.dialer application through 12.5.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.skt.prod.dialer.activities.outgoingcall.OutgoingCallInternalBroadcaster component...

5.5CVSS5.8AI score0.00073EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/23 5:20 a.m.3 views

CVE-2023-21230

In onAccessPointChanged of AccessPointPreference.java, there is a possible way for unprivileged apps to receive a broadcast about WiFi access point change and its BSSID or SSID due to a precondition check failure. This could lead to local information disclosure with no additional execution...

5.5CVSS5.7AI score0.00012EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 5:19 a.m.2 views

CVE-2023-21231

In getIntentForButton of ButtonManager.java, there is a possible way for an unprivileged application to start a non-exported or permission-protected activity due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User...

7.8CVSS6.8AI score0.00013EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:14 a.m.6 views

CVE-2013-4764

Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission...

4.3CVSS7AI score0.0016EPSS
Exploits0References1
NVD
NVDadded 2024/11/20 6:15 p.m.11 views

CVE-2018-9470

In bffScanneraddOutPos of Scanner.c, there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation...

8.8CVSS0.01979EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/11/20 5:15 p.m.12 views

CVE-2018-9470

In bffScanneraddOutPos of Scanner.c, there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation...

0.01979EPSS
Exploits0References1
NVD
NVDadded 2024/11/19 11:15 p.m.15 views

CVE-2018-9466

In the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This could lead to remote escalation of privilege in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation...

8.8CVSS0.02826EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/11/19 10:21 p.m.20 views

CVE-2018-9466

In the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This could lead to remote escalation of privilege in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation...

0.02826EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/19 10:21 p.m.12 views

CVE-2018-9466

In the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This could lead to remote escalation of privilege in an unprivileged app with no additional execution privileges needed. User interaction is needed for exploitation...

7.4AI score0.02826EPSS
Exploits0References1
OSV
OSVadded 2024/07/29 11:15 p.m.0 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

5.5CVSS5.7AI score0.00116EPSS
Exploits0References3
NVD
NVDadded 2024/07/29 11:15 p.m.13 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

7.5CVSS0.00116EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/07/29 10:16 p.m.12 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

7.1AI score0.00116EPSS
Exploits0References2
CVE
CVEadded 2024/07/29 10:16 p.m.53 views

CVE-2024-27886

CVE-2024-27886 affects macOS Ventura/V Sonoma stack with a logic issue in AppKit that allowed an unprivileged app to log keystrokes in other apps, including those in secure input mode. The vulnerability is fixed in macOS Sonoma 14.4; Apple documents describe a restriction upgrade to prevent cross...

7.5CVSS7.1AI score0.00116EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2024/07/29 10:16 p.m.17 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

0.00116EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/07/29 12:0 a.m.1 views

Apple macOS 安全漏洞

Apple macOS is a proprietary operating system from Apple Inc. developed specifically for Mac computers. A security vulnerability exists in Apple macOS Sonoma prior to version 14.4, which stems from the possibility that an unprivileged application may be able to record keystrokes in other...

7.5CVSS8.2AI score0.00116EPSS
Exploits0References2
OSV
OSVadded 2024/06/10 9:15 p.m.1 views

CVE-2024-27799

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

3.3CVSS5.7AI score0.00026EPSS
Exploits0References8
CVE
CVEadded 2024/06/10 8:56 p.m.66 views

CVE-2024-27799

CVE-2024-27799 affects Apple OSes: macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, and iOS 16.7.8 / iPadOS 16.7.8. The issue arises from insufficient entitlement checks, allowing an unprivileged app to log keystrokes in other apps, including those using secure input mode. Apple’s ...

3.3CVSS7.2AI score0.00026EPSS
Exploits0References12Affected Software3
Vulnrichment
Vulnrichmentadded 2024/06/10 8:56 p.m.17 views

CVE-2024-27799

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

7.2AI score0.00026EPSS
Exploits0References4
Rows per page
Query Builder