71 matches found
PT-2026-39938
ACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if a...
CVE-2025-8485
CVE-2025-8485 affects Lenovo App Store. Description: an improper permissions vulnerability could allow a locally authenticated user to execute code with elevated privileges during the installation of an application. Affected component: Lenovo App Store's installation process. Root cause: improper...
CVE-2025-8485
An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application...
EUVD-2025-74040
An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces th...
EUVD-2025-74044
The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...
EUVD-2017-11868
Malware in sbrugna...
EUVD-2017-2601
Malware in sbrugna...
EUVD-2017-9774
Malware in sbrugna...
EUVD-2006-0224
Malware in sbrugna...
EUVD-2022-25973
Malicious code in bioql PyPI...
EUVD-2022-33215
Malicious code in bioql PyPI...
EUVD-2022-25969
Malicious code in bioql PyPI...
EUVD-2023-25601
Malicious code in bioql PyPI...
EUVD-2022-25970
Malicious code in bioql PyPI...
EUVD-2022-52224
Malicious code in bioql PyPI...
CVE-2024-22752
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain escalated privileges via use of crafted executable launched from the application installation directory...
CVE-2022-30269
Motorola ACE1000 RTUs through 2022-05-02 mishandle application integrity. They allow for custom application installation via either STS software, the C toolkit, or the ACE1000 Easy Configurator. In the case of the Easy Configurator, application images as PLX/DAT/APP/CRC files are uploaded via the...
ASB-A-382064697
Bulletin has no description...
CVE-2025-20895
The CVE-2025-20895 affects Samsung Galaxy Store prior to 4.5.87.6. The issue permits authentication bypass via an alternate path in Galaxy Store, enabling a physical attacker to install arbitrary apps and bypass Setupwizard restrictions. Affected: Galaxy Store versions before 4.5.87.6. Root cause...
CVE-2024-22752
Insecure permissions issue in EaseUS MobiMover 6.0.5 Build 21620 allows attackers to gain escalated privileges via use of crafted executable launched from the application installation directory...