Lucene search
K

4363 matches found

ThreatPost
ThreatPost
added 2013/07/09 2:1 p.m.11 views

Android Master Key Bug Details Made Public

The details of the Android vulnerability that enables an attacker to create a malicious update to an APK file without breaking its cryptographic signature have become public but it appears as though Google will have a patch ready for the flaw by the time it’s fully disclosed early next month. The...

6.9AI score
Exploits0References5
The Hacker News
The Hacker News
added 2013/07/04 2:0 p.m.8 views

Android vulnerability allows hackers to modify apps without breaking signatures

Almost all Android handsets are vulnerable to a flaw that could allow hackers to seize control of a device to make calls, send texts, or build a mobile botnet, has been uncovered by Bluebox Security .i.e almost 900 million Android devices globally. Or simply, The Flaw allow hackers to modify any...

6.8AI score
Exploits0
UbuntuCve
UbuntuCve
added 2013/04/03 11:56 a.m.32 views

CVE-2013-0790

Unspecified vulnerability in the browser engine in Mozilla Firefox before 20.0 on Android allows remote attackers to cause a denial of service stack memory corruption and application crash or possibly execute arbitrary code via unknown vectors involving a plug-in...

10CVSS6.1AI score0.04199EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2013/03/22 5:13 a.m.17 views

T-Mobile Wi-Fi Calling App vulnerable to Man-in-the-Middle attack

T-Mobile devices having a default Wi-Fi Calling feature that keeps you connected in areas with little or no coverage using Wi-Fi connection. But according to new finding by students Jethro Beekman and Christopher Thompson from University of California Berkeley, that this feature lets millions of...

6.6AI score
Exploits0
CVE
CVE
added 2013/02/05 3:0 p.m.48 views

CVE-2011-1352

The CVE-2011-1352 issue affects the PowerVR SGX driver used in Android prior to 2.3.6. A local attacker can trigger kernel memory corruption via the pvrsrvkm device by supplying crafted user data, enabling privilege escalation to root. Multiple connected sources (including Levitator exploit code,...

6.9CVSS6.9AI score0.00237EPSS
Exploits3References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/11/16 5:10 a.m.5 views

Monaca Debugger for Android information management vulnerability

Overview Monaca Debugger for Android contains an information management vulnerability. Monaca Debugger provided by Asial Corporation contains an issue where account information of the product or other information such as session IDs are saved in a log file. KuMaGa ShiRoIHi reported this...

5CVSS6.5AI score0.01354EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2012/11/04 12:0 a.m.5 views

PT-2012-6122 · Jpmorgan Chase · Chase Mobile Banking Application

Name of the Vulnerable Software and Affected Versions: Chase mobile banking application for Android affected versions not specified Description: The issue concerns a failure to verify the server hostname against the domain name in the X.509 certificate's Common Name CN or subjectAltName field. Th...

5.9CVSS5.4AI score0.00431EPSS
Exploits1References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/09/28 3:20 a.m.4 views

jigbrowser+ for Android vulnerable in the WebView class

Overview jigbrowser+ for Android contains a vulnerability in the WebView class. jigbrowser+ is a web browser for a smartphone. jigbrowser+ for Android contains a vulnerability in the WebView class. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/...

4.3CVSS6.5AI score0.01191EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/09/03 1:34 a.m.7 views

Cybozu Live for Android vulnerable to arbitrary Java method execution

Overview Cybozu Live for Android contains an arbitrary Java method execution vulnerability. Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains an arbitrary Java method execution vulnerability. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc...

6.8CVSS7.1AI score0.02009EPSS
Exploits1References5
Cvelist
Cvelist
added 2012/05/01 2:0 p.m.21 views

CVE-2012-2217

The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote...

6.6AI score0.02056EPSS
Exploits0References4
NVD
NVD
added 2012/03/07 11:55 a.m.13 views

CVE-2012-1387

Unspecified vulnerability in the RealTalk com.tmsmanager.tms application A.0.9.250 for Android has unknown impact and attack vectors...

10CVSS6.5AI score0.01415EPSS
Exploits0References1
NVD
NVD
added 2012/03/07 11:55 a.m.12 views

CVE-2012-1382

Unspecified vulnerability in the Youdao Dictionary com.youdao.dict application 1.6.1, 2.0.12, and 3.0.01 for Android has unknown impact and attack vectors...

10CVSS6.5AI score0.0135EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2012/03/07 11:55 a.m.2 views

CVE-2012-1401

Unspecified vulnerability in the CamScanner com.intsig.camscanner application 1.2.2.20110823 and 1.3.2.20120116 for Android has unknown impact and attack vectors...

10CVSS5.4AI score0.01415EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2012/03/07 11:55 a.m.1 views

CVE-2012-1392

Unspecified vulnerability in the Dolphin Browser HD mobi.mgeek.TunnyBrowser application 6.2.0, 7.2.1, 7.3.0, and 7.4.0 for Android has unknown impact and attack vectors...

10CVSS5.4AI score0.01415EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2012/03/07 11:55 a.m.1 views

CVE-2012-1387

Unspecified vulnerability in the RealTalk com.tmsmanager.tms application A.0.9.250 for Android has unknown impact and attack vectors...

10CVSS5.4AI score0.01415EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2012/03/07 11:55 a.m.3 views

CVE-2012-1383

Unspecified vulnerability in the NetEase Reader com.netease.pris application 1.1.2 and 1.2.0 for Android has unknown impact and attack vectors...

10CVSS5.4AI score0.01396EPSS
Exploits0References2
Cvelist
Cvelist
added 2012/03/07 11:0 a.m.14 views

CVE-2012-1387

Unspecified vulnerability in the RealTalk com.tmsmanager.tms application A.0.9.250 for Android has unknown impact and attack vectors...

6.5AI score0.01415EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2011/10/02 7:3 p.m.3 views

HTC Android Vulnerability - Exposes Phone numbers, Gps, SMS, Emails etc

HTC Android Vulnerability - Exposes Phone numbers, Gps, SMS, Emails etc If you are running a HTC Android smartphone with the latest updates applied, chances are your personal data is freely accessible to any app you have given network access to in the form of full Internet permissions.This...

7.2AI score
Exploits0
Kaspersky
Kaspersky
added 2011/08/19 12:0 a.m.70 views

KLA10142 OSI vulnerability in Dropbox

Improper permission granting was found in Dropbox for Android. By exploiting this vulnerability malicious users can obtain dropbox session information. This vulnerability can be exploited remotely via a specially designed app. Original advisories Blog post Related products Dropbox-for-Android CVE...

7AI score
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2011/07/29 5:26 a.m.8 views

Android vulnerability where an incorrect SSL certificate is displayed

Overview Android OS contains a vulnerability where an incorrect SSL certificate is displayed. Android OS contains a vulnerability where a SSL certificate from an outside site is displayed when a user attempts to display a SSL certificate from a site that reads in contents from an outside site...

4.3CVSS6.4AI score0.00787EPSS
Exploits0References8
Rows per page
Query Builder