Lucene search
K

95 matches found

Cvelist
Cvelist
added 2018/11/13 8:0 p.m.18 views

CVE-2018-2482

SAP Mobile Secure Android Application, Mobile-secure.apk Android client, before version 6.60.19942.0, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Install the Mobile Secure Android client released in Mid-Oct 2018...

7.4AI score0.01969EPSS
Exploits0References3
NVD
NVD
added 2018/09/06 5:29 p.m.14 views

CVE-2018-1000664

daneren2005 DSub for Subsonic Android client version 5.4.1 contains a CWE-295: Improper Certificate Validation vulnerability in HTTPS Client that can result in Any non-CA signed server certificate, including self signed and expired, are accepted by the client. This attack appear to be exploitable...

5.9CVSS5.7AI score0.00541EPSS
Exploits0References1
Prion
Prion
added 2018/09/06 5:29 p.m.14 views

Input validation

daneren2005 DSub for Subsonic Android client version 5.4.1 contains a CWE-295: Improper Certificate Validation vulnerability in HTTPS Client that can result in Any non-CA signed server certificate, including self signed and expired, are accepted by the client. This attack appear to be exploitable...

4.3CVSS5.7AI score0.00541EPSS
Exploits0References1Affected Software1
Hacker One
Hacker One
added 2018/07/17 5:9 p.m.74 views

Rocket.Chat: Blind XSS in the rocket.chat registration email

Note: This report was initially sent via email and I was invited to submit this here. Hi team, During an audit on a third-party, I discovered that rocket.chat Android client might be vulnerable to blind XSS. My XSS payload fired in the context of the target's rocket.chat client as you can see bel...

0.3AI score
Exploits0
CNVD
CNVD
added 2018/05/22 12:0 a.m.1 views

JCG-AC836M Jetix Router Android client suffers from information leakage vulnerability

Ltd. is a professional manufacturer and operator of network and communication equipment, and is a leader in the field of manufacturing and marketing of client-side equipment for wireless local area networks in China. An information leakage vulnerability exists in the Android client of the...

6.5AI score
Exploits0
CNVD
CNVD
added 2018/05/22 12:0 a.m.1 views

Denial of Service Vulnerability in Android Client of JCG-AC836 Jetix Router

Ltd. is a professional manufacturer and operator of network and communication equipment, and is a leader in the field of manufacturing and marketing of client-side equipment for wireless local area networks in China. A denial-of-service vulnerability exists in the Android client of the JCG-AC836...

6.6AI score
Exploits0
CNVD
CNVD
added 2018/01/19 12:0 a.m.1 views

SMS Bombing Vulnerability in Air China's Android Client

Air China Android client is an airplane flight inquiry service software. An SMS bombing vulnerability exists in the Air China Android client - Zhiyin Mall at the order submission. An attacker is allowed to replay this interface for SMS bombing, which constitutes system resource consumption...

6.9AI score
Exploits0
NVD
NVD
added 2017/04/24 7:59 p.m.13 views

CVE-2017-3499

Vulnerability in the Oracle Social Network component of Oracle Fusion Middleware subcomponent: Android Client. The supported version that is affected is prior to 11.1.12.0.0 17019101. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTPS to compromise...

7.8CVSS6.5AI score0.0254EPSS
Exploits0References3
Prion
Prion
added 2017/04/24 7:59 p.m.11 views

Code injection

Vulnerability in the Oracle Social Network component of Oracle Fusion Middleware subcomponent: Android Client. The supported version that is affected is prior to 11.1.12.0.0 17019101. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTPS to compromise...

7.8CVSS6.4AI score0.0254EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2017/04/24 7:0 p.m.4 views

CVE-2017-3499

Vulnerability in the Oracle Social Network component of Oracle Fusion Middleware subcomponent: Android Client. The supported version that is affected is prior to 11.1.12.0.0 17019101. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTPS to compromise...

6.3AI score0.0254EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/04/24 7:0 p.m.16 views

CVE-2017-3499

Vulnerability in the Oracle Social Network component of Oracle Fusion Middleware subcomponent: Android Client. The supported version that is affected is prior to 11.1.12.0.0 17019101. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTPS to compromise...

6.5AI score0.0254EPSS
Exploits0References3
CVE
CVE
added 2017/04/24 7:0 p.m.51 views

CVE-2017-3499

CVE-2017-3499 affects Oracle Fusion Middleware’s Oracle Social Network Android Client (prior to 11.1.12.0.0). It is exploitable over HTTPS by an unauthenticated, network-accessing attacker, potentially leading to unauthorized access to confidential Oracle Social Network data. Root cause and speci...

7.8CVSS7AI score0.0254EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2016/08/31 12:0 a.m.2 views

China Telecom WingPay Android client gesture lock has design flaws

Wing Pay is a mobile payment service launched by China Telecom. A design vulnerability exists in the gesture lock of the Wing Pay Android client. By exploiting the vulnerability, an attacker can bypass the gesture lock security mechanism of the Wing Pay Android client and obtain users' private...

6.6AI score
Exploits0
CNVD
CNVD
added 2015/08/26 12:0 a.m.3 views

Multiple SQL Injection Vulnerabilities in Panmicro's Mobile OA Solution e-mobile

E-Mobile is a mobile office product based on Android client released by Shanghai Panmicro Network Technology Co. There are multiple SQL injection vulnerabilities in Panmicro's mobile OA solution, e-mobile. It allows attackers to utilize commonly used SQL injection tools to obtain sensitive databa...

7.9AI score
Exploits0References1
Packet Storm
Packet Storm
added 2013/09/21 12:0 a.m.42 views

Share KM 1.0.19 Denial Of Service

Advisory Information : ====================== Title : Share KM 1.0.19 - Remote Denial Of Service Advisory ID : Cr02013-001 Product : Share KM desktop setup file Vendor : SmartUX Vulnerable Versions : 1.0.19 and probably prior release Tested Version : 1.0.19 Tested On : Windows 7 Vulnerability Typ...

7.4AI score
Exploits0
Rows per page
Query Builder