2 matches found
PT-2024-10576 · Gentoo · Gentoo Portage
Name of the Vulnerable Software and Affected Versions: Gentoo Portage versions prior to 3.0.47 Description: The issue concerns missing PGP validation of executed code. Specifically, the standalone emerge-webrsync downloads a .gpgsig file but does not perform signature verification. This issue doe...
CVE-2022-35734
'Hulu / フールー' App for Android from version 3.0.47 to the version prior to 3.1.2 uses a hard-coded API key for an external service. By exploiting this vulnerability, API key for an external service may be obtained by analyzing data in the app...