Lucene search
K

1753 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/11 8:20 p.m.4 views

CVE-2026-0520

A potential vulnerability was reported in the Lenovo FileZ Android application that, under certain conditions, could allow a local authenticated user to retrieve some sensitive data stored in a log file...

2.8CVSS5.8AI score0.00093EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.4 views

PT-2026-24829

CVE-2026-0520 A potential vulnerability was reported in the Lenovo FileZ Android application that, under certain conditions, could allow a local authenticated user to retrieve some s… https://t.co/GakGcTOAc1...

2.8CVSS5.8AI score0.00093EPSS
Exploits0References3
OSV
OSV
added 2026/03/09 4:16 a.m.6 views

CVE-2026-3822

Taipower APP for Andorid developed by Taipower has an Improper Certificate Validation vulnerability. When establishing an HTTPS connection with the server, the application fails to verify the server-side TLS/SSL certificate. This flaw allows an unauthenticated remote attackers to exploit the...

4.8CVSS5.9AI score0.00152EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/09 3:38 a.m.4 views

CVE-2026-3822

Taipower APP for Andorid developed by Taipower has an Improper Certificate Validation vulnerability. When establishing an HTTPS connection with the server, the application fails to verify the server-side TLS/SSL certificate. This flaw allows an unauthenticated remote attackers to exploit the...

8.3CVSS5.9AI score0.00152EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/04 7:45 p.m.4 views

CVE-2026-3465

A vulnerability was determined in Tuya App and SDK 24.07.11 on Android. Affected by this vulnerability is an unknown functionality of the component JSON Data Point Handler. This manipulation of the argument cruisetime causes denial of service. Remote exploitation of the attack is possible. The...

3.1CVSS5.1AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2026/03/03 3:16 p.m.4 views

CVE-2026-3465

A vulnerability was determined in Tuya App and SDK 24.07.11 on Android. Affected by this vulnerability is an unknown functionality of the component JSON Data Point Handler. This manipulation of the argument cruisetime causes denial of service. Remote exploitation of the attack is possible. The...

3.1CVSS0.00288EPSS
Exploits0References4
NVD
NVD
added 2026/02/26 8:31 p.m.33 views

CVE-2026-27510

Unitree Go2 firmware versions 1.1.7 through 1.1.11, when used with the Unitree Go2 Android application com.unitree.doggo2, are vulnerable to remote code execution due to missing integrity protection and validation of user-created programmes. The Android application stores programs in a local SQLi...

9.6CVSS0.00292EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/26 6:56 p.m.5 views

CVE-2026-27510

Unitree Go2 firmware versions 1.1.7 through 1.1.11, when used with the Unitree Go2 Android application com.unitree.doggo2, are vulnerable to remote code execution due to missing integrity protection and validation of user-created programmes. The Android application stores programs in a local SQLi...

9.6CVSS6.6AI score0.00292EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/02/26 6:56 p.m.28 views

CVE-2026-27510 Unitree Go2 Mobile Program Tampering Enables Root RCE

Unitree Go2 firmware versions 1.1.7 through 1.1.11, when used with the Unitree Go2 Android application com.unitree.doggo2, are vulnerable to remote code execution due to missing integrity protection and validation of user-created programmes. The Android application stores programs in a local SQLi...

9.6CVSS0.00292EPSS
Exploits1References3
OSV
OSV
added 2026/02/26 3:21 p.m.6 views

CVE-2026-26228 VLC for Android < 3.7.0 Remote Access Path Traversal

VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remote Access Server routing for the authenticated endpoint GET /download. The file query parameter is concatenated into a filesystem path under the configured download directory without canonicalizatio...

2.3CVSS6AI score0.00275EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.9 views

PT-2026-22179

Name of the Vulnerable Software and Affected Versions Unitree Go2 versions 1.1.7 through 1.1.11 Description Remote code execution is possible due to a lack of integrity protection and validation of user-created programs when used with the Unitree Go2 Android application com.unitree.doggo2. The...

9.6CVSS6AI score0.00292EPSS
Exploits1References30
Malwarebytes
Malwarebytes
added 2026/02/25 3:48 p.m.6 views

Developer creates app to detect nearby smart glasses

An independent developer, moved after reading about the abuse of smart glasses to film people without their consent, decided to create an app to detect nearby smart glasses. Smart glasses are wearable devices built into ordinary-looking eyewear that add functions like audio, cameras, sensors, and...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/14 7:22 p.m.9 views

CVE-2026-1578

HP App for Android is potentially vulnerable to cross-site scripting XSS when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

5.1CVSS5AI score0.00126EPSS
Exploits0References1
NVD
NVD
added 2026/02/13 3:15 p.m.17 views

CVE-2026-1578

HP App for Android is potentially vulnerable to cross-site scripting XSS when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

5.1CVSS0.00126EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/13 2:56 p.m.7 views

CVE-2026-1578

HP App for Android is potentially vulnerable to cross-site scripting XSS when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

5.1CVSS5AI score0.00126EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/13 2:56 p.m.2 views

CVE-2026-1578 HP App – Potential Cross-Site Scripting

HP App for Android is potentially vulnerable to cross-site scripting XSS when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

5.1CVSS5AI score0.00126EPSS
Exploits0References1
CVE
CVE
added 2026/02/13 2:56 p.m.21 views

CVE-2026-1578

HP App for Android is potentially vulnerable to cross-site scripting (XSS) when using an outdated version on mobile devices. The issue is being addressed with updates from HP. According to the provided CVE entry, the vulnerability is associated with an initial update path and a MEDIUM severity (C...

5.1CVSS5AI score0.00126EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/13 12:0 a.m.8 views

PT-2026-7994

HP App for Android is potentially vulnerable to cross-site scripting XSS when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities...

5.1CVSS5AI score0.00126EPSS
Exploits0References2
Hewlett-Packard
Hewlett-Packard
added 2026/02/12 12:0 a.m.9 views

HP App – Potential Cross-Site Scripting

HP App for Android is potentially vulnerable to cross-site scripting XSS when using an outdated version of the application via mobile devices. HP is releasing updates to mitigate these potential vulnerabilities. Update your application...

5.1CVSS5AI score0.00126EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002743)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002743 advisory. The kernel in Android before 2016-08-05 on Nexus 7 2013 devices allows attackers to gain privileges via a crafted application, aka internal bug 28522518. Tenable has...

9.3CVSS7.4AI score0.00582EPSS
Exploits0References4
Rows per page
Query Builder