Lucene search
K

1753 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/13 11:6 p.m.9 views

CVE-2026-41281

Android App "あんしんフィルター for au" provided by KDDI CORPORATION contains Cleartext Transmission of Sensitive Information CWE-319 vulnerability. A man-in-the-middle attacker may access and modify communications transmitted in plaintext, potentially resulting in information disclosure or data tampering...

6.3CVSS5.8AI score0.00092EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/13 11:6 p.m.49 views

CVE-2026-41281

Android App "あんしんフィルター for au" provided by KDDI CORPORATION contains Cleartext Transmission of Sensitive Information CWE-319 vulnerability. A man-in-the-middle attacker may access and modify communications transmitted in plaintext, potentially resulting in information disclosure or data tampering...

6.3CVSS0.00092EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/13 11:6 p.m.8 views

CVE-2026-41281

Android App "あんしんフィルター for au" provided by KDDI CORPORATION contains Cleartext Transmission of Sensitive Information CWE-319 vulnerability. A man-in-the-middle attacker may access and modify communications transmitted in plaintext, potentially resulting in information disclosure or data tampering...

6.3CVSS5.8AI score0.00092EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 11:6 p.m.29 views

CVE-2026-41281

The CVE-2026-41281 entry concerns the Android app “あんしんフィルター for au” from KDDI CORPORATION, affected by Cleartext Transmission of Sensitive Information (CWE-319). The root cause is sending sensitive data in plaintext, enabling a MITM attacker to read or modify communications. Impact is informatio...

6.3CVSS5.8AI score0.00092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.16 views

PT-2026-40832

Android App "あんしんフィルター for au" provided by KDDI CORPORATION contains Cleartext Transmission of Sensitive Information CWE-319 vulnerability. A man-in-the-middle attacker may access and modify communications transmitted in plaintext, potentially resulting in information disclosure or data tampering...

6.3CVSS5.8AI score0.00092EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/27 12:11 p.m.41 views

chatpdf.pro

Dirty Stream Vulnerability in chatpdf.pro App Name: PDF...

5.6AI score
Exploits0
EUVD
EUVD
added 2026/04/21 1:19 a.m.4 views

EUVD-2026-24039

Lawnchair is a free, open-source home app for Android. Prior to commit fcba413f55dd47f8a3921445252849126c6266b2, command injection in releaseupdate.yml workflow dispatch input allows arbitrary code execution. Commit fcba413f55dd47f8a3921445252849126c6266b2 patches the issue...

8.7CVSS6AI score0.02349EPSS
Exploits2References2
GithubExploit
GithubExploit
added 2026/04/13 5:36 a.m.118 views

Bluetooth-app

Bluetooth Security Testing App A Kivy-based Android applicati...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/04/10 4:3 p.m.7 views

EUVD-2026-21438

OpenClaw before 2026.3.22 contains an unvalidated WebView JavascriptInterface vulnerability allowing attackers to inject arbitrary instructions. Untrusted pages can invoke the canvas bridge to execute malicious code within the Android application context...

8.8CVSS6AI score0.00368EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/06 9:31 p.m.3 views

EUVD-2026-19482

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/06 7:45 p.m.4 views

CVE-2026-5682 Meesho Online Shopping App com.meesho.supply endpoint risky encryption

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/06 7:45 p.m.3 views

CVE-2026-5682

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/06 5:0 p.m.5 views

CVE-2026-5471

A vulnerability was detected in Investory Toy Planet Trouble App up to 1.5.5 on Android. Impacted is an unknown function of the file assets/google-services-desktop.json of the component app.investory.toyfactory. The manipulation of the argument currentkey results in use of hard-coded cryptographi...

4.8CVSS5.5AI score0.00141EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.20 views

PT-2026-30730

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/04 11:2 a.m.5 views

CVE-2026-5462

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS5.6AI score0.00156EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/04 11:2 a.m.6 views

CVE-2026-5457

A security flaw has been discovered in PropertyGuru AgentNet Singapore App up to 23.7.10 on Android. This affects an unknown function of the file com/allproperty/android/agentnet/BuildConfig.java of the component com.allproperty.android.agentnet. The manipulation of the argument...

4.8CVSS5.4AI score0.00144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/04 11:2 a.m.4 views

CVE-2026-5456

A vulnerability was identified in Align Technology My Invisalign App 3.12.4 on Android. The impacted element is an unknown function of the file com/aligntech/myinvisalign/BuildConfig.java of the component com.aligntech.myinvisalign.emea. The manipulation of the argument CDAACCESSTOKEN leads to us...

4.8CVSS5.5AI score0.00105EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:45 p.m.3 views

CVE-2026-5471

A vulnerability was detected in Investory Toy Planet Trouble App up to 1.5.5 on Android. Impacted is an unknown function of the file assets/google-services-desktop.json of the component app.investory.toyfactory. The manipulation of the argument currentkey results in use of hard-coded cryptographi...

4.8CVSS5.5AI score0.00141EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/04/03 9:30 a.m.6 views

EUVD-2026-18607

A security flaw has been discovered in PropertyGuru AgentNet Singapore App up to 23.7.10 on Android. This affects an unknown function of the file com/allproperty/android/agentnet/BuildConfig.java of the component com.allproperty.android.agentnet. The manipulation of the argument...

4.8CVSS5.4AI score0.00144EPSS
Exploits0References5
NVD
NVD
added 2026/04/03 8:16 a.m.5 views

CVE-2026-5462

A vulnerability was identified in Wahoo Fitness SYSTM App up to 7.2.1 on Android. Impacted is an unknown function of the file com/WahooFitness/SYSTM/BuildConfig.java of the component com.WahooFitness.SYSTM. Such manipulation of the argument SEGMENTWRITEKEY leads to use of hard-coded cryptographic...

4.8CVSS0.00156EPSS
Exploits0References4
Rows per page
Query Builder