Lucene search
K

167 matches found

OSV
OSV
added 2022/08/05 4:15 p.m.2 views

CVE-2022-33720

Improper authentication vulnerability in AppLock prior to SMR Aug-2022 Release 1 allows physical attacker to access Chrome locked by AppLock via new tap shortcut...

2.4CVSS5.8AI score0.00132EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/08/05 12:0 a.m.4 views

SAMSUNG Mobile devices 授权问题漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from South Korea's Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices AppLock Module SMR Aug-2022 Release 1 prior to Release 1, which stems from the presence of incorrect...

2.4CVSS4.8AI score0.00132EPSS
Exploits0References2
CNVD
CNVD
added 2022/07/15 12:0 a.m.46 views

Samsung App lock authentication error vulnerability

Samsung App lock is an application for Samsung Samsung mobile devices that protects your privacy with password lock, graphical lock, and fingerprint lock.Samsung App lock suffers from an authentication error vulnerability that stems from the lack of proper authentication logic in AppLock, which c...

7.8CVSS1.9AI score0.00104EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/07/12 12:0 a.m.6 views

SAMSUNG Mobile devices App lock 授权问题漏洞

Samsung App lock is an application for Samsung Samsung mobile devices that protects your privacy with password lock, graphical lock, and fingerprint lock.Samsung App lock suffers from an authentication error vulnerability that stems from the lack of proper authentication logic in AppLock, which c...

7.8CVSS5.7AI score0.00104EPSS
Exploits0References2
OwnCloud
OwnCloud
added 2022/03/17 12:0 a.m.60 views

ownCloud Android App lock bypass - ownCloud

An attacker with physical access to the device could bypass the app lock of the ownCloud Android App...

5.3CVSS3.9AI score0.00236EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/03/10 5:46 p.m.11 views

CVE-2022-24929

Unprotected Activity in AppLock prior to SMR Mar-2022 Release 1 allows attacker to change the list of locked app without authentication...

4.1CVSS5.8AI score0.00099EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2021/07/06 8:1 p.m.44 views

Android Apps in Google Play Harvest Facebook Credentials

A set of nine malicious Android apps that steal Facebook credentials were found on Google Play, which racked up a collective 5.9 million installations before Google removed them. According to Dr. Web’s malware analysts, the applications were fully functional, so that victims remained in the dark...

7AI score
Exploits0References5
NVD
NVD
added 2021/04/02 3:15 p.m.22 views

CVE-2021-21400

wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted to enter the app-lock passphrase, the typed passphrase will be sent into the most recently used chat when the user does not actively give...

7.1CVSS0.01118EPSS
Exploits0References4
OSV
OSV
added 2021/04/02 3:15 p.m.11 views

CVE-2021-21400

wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted to enter the app-lock passphrase, the typed passphrase will be sent into the most recently used chat when the user does not actively give...

6.5CVSS6.8AI score
Exploits0References4
Prion
Prion
added 2021/04/02 3:15 p.m.14 views

Input validation

wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted to enter the app-lock passphrase, the typed passphrase will be sent into the most recently used chat when the user does not actively give...

4.3CVSS6.4AI score0.01118EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/04/02 2:50 p.m.28 views

CVE-2021-21400 Entering code in App Lock modal sends input to conversation

wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted to enter the app-lock passphrase, the typed passphrase will be sent into the most recently used chat when the user does not actively give...

7.1CVSS7.1AI score0.01118EPSS
Exploits0References4
OwnCloud
OwnCloud
added 2020/08/03 12:0 a.m.26 views

Bypassing App Lock (Pattern/Passcode/Fingerprint lock | Android) (oC-SA-2020-003)

Given an attacker has physical access, creating a backup of the ownCloud Android app via adb provides access to the app preferences file. Contained in the file were settings related to the app lock feature such as the pincode/pattern and if the respective lock is active. An attacker could change...

3.9CVSS3.2AI score
Exploits0Affected Software1
OwnCloud
OwnCloud
added 2020/06/16 12:0 a.m.10 views

Security lock can be bypassed by changing the system date

Given an attacker has physical access to the device, a faulty timestamp check allowed to bypass the app lock by setting the system date to the past...

6.1CVSS2.9AI score
Exploits0Affected Software1
CNVD
CNVD
added 2020/05/06 12:0 a.m.4 views

Huawei Mate 20 Access Control Error Vulnerability

Huawei Mate 20 is a smartphone from Chinese company Huawei Huawei. An access control error vulnerability exists in previous versions of Huawei Mate 20 10.0.0.188 C00E74R3P8, which stems from the system's failure to appropriately restrict profile modifications by a specific user, and can be...

5CVSS6.8AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2020/04/27 3:15 p.m.4 views

CVE-2020-1807

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188C00E74R3P8 have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series...

3.5CVSS5.8AI score0.00223EPSS
Exploits0References1
NVD
NVD
added 2020/04/27 3:15 p.m.34 views

CVE-2020-1807

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188C00E74R3P8 have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series...

3.6CVSS3.9AI score0.00223EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/01/20 12:0 a.m.4 views

The vulnerability of the Norton App Lock tool, related to insecure management of privileges, allows a violator to gain unauthorized access to the device.

The vulnerability of the Norton App Lock utility is related to insecure management of privileges. Exploiting this vulnerability could allow a malicious individual to gain unauthorized access to the device...

5.6CVSS6.1AI score0.00302EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2020/01/08 4:15 p.m.4 views

CVE-2016-6591

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions...

7.1CVSS5.8AI score0.00293EPSS
Exploits0References2
NVD
NVD
added 2020/01/08 4:15 p.m.19 views

CVE-2016-6591

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions...

7.1CVSS6.9AI score0.00293EPSS
Exploits0References2
Prion
Prion
added 2020/01/08 4:15 p.m.15 views

Security feature bypass

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions...

3.3CVSS6.9AI score0.00293EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder