Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2021-32949

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00154EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/09/26 8:14 p.m.7 views

CVE-2023-41996

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch...

6AI score0.0009EPSS
Exploits0References3
Malwarebytes
Malwarebytesadded 2023/08/16 11:15 a.m.16 views

Beware malware posing as beta versions of legitimate apps, warns FBI

The FBI has issued a warning that cybercriminals are embedding malicious code in mobile beta-testing apps in attempts to defraud potential victims. The victims are typically contacted on dating sites and social media, and in some cases they are promised incentives such as large financial payouts...

6.7AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2022/02/15 11:15 p.m.2 views

CVE-2021-46249

An authorization bypass exploited by a user-controlled key in SpecificApps REST API in ScratchOAuth2 before commit d856dc704b2504cd3b92cf089fdd366dd40775d6 allows app owners to set flags that indicate whether an app is verified on their own apps...

6.5CVSS0.00154EPSS
Exploits0References2
Prion
Prionadded 2022/02/15 11:15 p.m.13 views

Authorization

An authorization bypass exploited by a user-controlled key in SpecificApps REST API in ScratchOAuth2 before commit d856dc704b2504cd3b92cf089fdd366dd40775d6 allows app owners to set flags that indicate whether an app is verified on their own apps...

4CVSS6.4AI score0.00154EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2022/02/15 10:13 p.m.89 views

CVE-2021-46249

The CVE-2021-46249 issue is an authorization bypass in ScratchOAuth2’s SpecificApps REST API that can be exploited via a user-controlled key to let app owners set flags indicating an app is verified. Root cause: API-level authorization bypass enabling modification of verification status without p...

6.5CVSS6.4AI score0.00154EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPostadded 2019/06/03 12:28 p.m.70 views

MacOS Zero Day Allows Trusted Apps to Run Malicious Code

A researcher has revealed a zero-day flaw in Apple’s Mojave operating system tied to the way the OS verifies apps. The bug allows attackers to sneak past macOS security measures and run whitelisted apps that have been manipulated to run malicious code. macOS researcher Patrick Wardle revealed the...

0.5AI score
Exploits0References1
ThreatPost
ThreatPostadded 2017/05/18 4:49 p.m.10 views

Android Gets Security Makeover With Google Play Protect

Mobile operating system Android received a big security makeover Wednesday with the introduction of Google Play Protect. At Google I/O, Google’s annual developer conference, the company teased a major update to its security platform that consists of a mix of new features, a rebranding of existing...

1AI score
Exploits0References5
ThreatPost
ThreatPostadded 2012/11/15 6:47 p.m.10 views

Google Sheds Light on New Android App Scanner

Google has divulged more information about its forthcoming application verifier for the Android operating system. The feature is being rolled out over the air alongside the latest build of the OS, Jelly Bean 4.2, on Nexus 7 and Galaxy Nexus devices as of yesterday. While it can be disabled, the a...

Exploits0References4
Rows per page
Query Builder