Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

75475 matches found

CNNVD
CNNVDadded 2026/04/07 12:0 a.m.4 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome for Android prior to 147.0.7727.55 contained a security vulnerability. This vulnerability stemmed from incorrect Omnibox security UI behavior, which could allow remote attackers to manipulate the address bar content...

4.3CVSS7.3AI score0.00161EPSS
Exploits0References3
CVE
CVEadded 2026/04/07 12:0 a.m.7 views

CVE-2025-69515

The CVE-2025-69515 entry relates to JXL’s 9 Inch Car Android Double Din Player (Android v12.0). It describes a flaw that lets attackers force the infotainment system to accept falsified GPS signals as legitimate, causing incorrect or static location reporting. Affected component: GPS/location han...

9.1CVSS5.9AI score0.00495EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/04/07 12:0 a.m.4 views

PT-2026-30982

An issue in JXL 9 Inch Car Android Double Din Player Android v12.0 allows attackers to force the infotainment system into accepting falsified GPS signals as legitimate, resulting in the device reporting an incorrect or static location...

5.9AI score0.00495EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/04/07 12:0 a.m.4 views

Google Chrome 竞争条件问题漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome for Android prior to 147.0.7727.55 contained a competitive condition vulnerability, which was caused by Media-related competitive conditions. This vulnerability could allow remote attackers to...

9.8CVSS7.3AI score0.00212EPSS
Exploits0References3
Android Security Bulletins
Android Security Bulletinsadded 2026/04/07 12:0 a.m.23 views

Pixel Update Bulletin—April 2026Stay organized with collectionsSave and categorize content based on your preferences.

The Pixel Update Bulletin contains details of security vulnerabilities and functional improvements affecting supported Pixel devices Google devices. For Google devices, security patch levels of 2026-04-01 or later address all issues in this bulletin and all issues in the April 2026 Android Securi...

6.3AI score
Exploits0
EUVD
EUVDadded 2026/04/06 9:31 p.m.1 views

EUVD-2026-19482

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References5
NVD
NVDadded 2026/04/06 9:16 p.m.2 views

CVE-2026-35394

Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls...

8.8CVSS0.00387EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/04/06 8:52 p.m.18 views

CVE-2026-35394 Mobile Next has Arbitrary Android Intent Execution via mobile_open_url

Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls...

8.3CVSS0.00387EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/04/06 8:52 p.m.3 views

CVE-2026-35394

Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls...

8.3CVSS6.2AI score0.00387EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/06 8:52 p.m.1 views

CVE-2026-35394 Mobile Next has Arbitrary Android Intent Execution via mobile_open_url

Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls...

8.3CVSS6.2AI score0.00387EPSS
Exploits1References1
CVE
CVEadded 2026/04/06 8:52 p.m.23 views

CVE-2026-35394

CVE-2026-35394 relates to Mobile Next MCP server’s mobile_open_url tool, where user-supplied URLs were passed directly to Android’s intent system without scheme validation. The underlying issue allowed execution of arbitrary Android intents (including USSD codes, phone calls, SMS messages, and co...

8.8CVSS6.2AI score0.00387EPSS
Exploits1References1Affected Software1
NVD
NVDadded 2026/04/06 8:16 p.m.2 views

CVE-2026-5682

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS0.00188EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/06 7:45 p.m.2 views

CVE-2026-5682

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/06 7:45 p.m.3 views

CVE-2026-5682 Meesho Online Shopping App com.meesho.supply endpoint risky encryption

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References4
CVE
CVEadded 2026/04/06 7:45 p.m.5 views

CVE-2026-5682

CVE-2026-5682 affects Meesho Online Shopping App (Android) in the com.meesho.supply component, specifically an unknown function in /api/endpoint. The issue arises from manipulation that leads to a risky cryptographic algorithm. Attack surface is remote, with high complexity required for exploitat...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/06 6:20 p.m.5 views

CVE-2025-48651

StrongBox in Android before security patch level 2026-04-05 has a vulnerability of High Severity, aka A-434039170, A-467765081, A-467765894, and A-467762899...

5.9AI score0.00096EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/04/06 5:0 p.m.4 views

CVE-2026-5471

A vulnerability was detected in Investory Toy Planet Trouble App up to 1.5.5 on Android. Impacted is an unknown function of the file assets/google-services-desktop.json of the component app.investory.toyfactory. The manipulation of the argument currentkey results in use of hard-coded cryptographi...

4.8CVSS5.5AI score0.00141EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/04/06 12:0 a.m.3 views

PT-2026-30585

The setup: 4 agents chain off each other in a loop, each reacting to the previous response. Dominus — finds a new vulnerability angle from the CISA KEV catalog Axiom — adds one new technical detail to the finding Cipher — identifies one specific flaw in the previous argument Vector — names one...

5.9AI score
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/04/06 12:0 a.m.4 views

PT-2026-30730

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/04/06 12:0 a.m.6 views

Google Android 安全漏洞

Google Android is an open-source operating system based on Linux, developed by Google Inc. Versions of Google Android prior to April 5, 2026, contained security vulnerabilities, stemming from the StrongBox component. These vulnerabilities could allow unauthorized access or manipulation of system...

5.5CVSS7.2AI score0.00096EPSS
Exploits0References2
Rows per page
Query Builder