11 matches found
CVE-2025-64696
Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache directory. If exploited, application-specific files may be accessed from other malicious applications...
CVE-2025-12176 Undocumented Administrative Accounts
Undocumented administrative accounts were getting created to facilitate access for applications running on board.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...
AI Agents Act Like Employees With Root Access—Here's How to Regain Control
The AI gold rush is on. But without identity-first security, every deployment becomes an open door. Most organizations secure native AI like a web app, but it behaves more like a junior employee with root access and no manager. From Hype to High Stakes Generative AI has moved beyond the hype cycl...
Firefox Users Cannot Access Desktops or Applications from Receiver for Websites
Windows, Mac OS X, and Linux users cannot access desktops and applications from Receiver for websites using Mozilla Firefox 26 or later. When a Firefox user clicks an icon, the Receiver for website displays a spinner for a few seconds, but the desktop or application does not start and no error...
CVE-2023-38259
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. An app may be able to access user-sensitive data...
多款Apple产品 信息泄露漏洞
Apple iOS and Apple iPadOS are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets.The vulnerability exists in Apple iOS prior to 15.6 and iPadOS prior to 15.6 due to an unauthorized access to sensitive informati...
PT-2018-16356 · Signal · Signal Messenger For Android
Name of the Vulnerable Software and Affected Versions: Signal Messenger for Android version 4.24.8 Description: The issue may expose private information when using "disappearing messages." If a user uses the photo feature available in the "attach file" menu, then Signal will leave the picture in...
UBUNTU-CVE-2016-6797
The ResourceLinkFactory implementation in Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 did not limit web application access to global JNDI resources to those resources explicitly linked to the web application. Therefore, it was...
Cisco Finesse Cross-Site Request Forgery Vulnerability
Cisco Finesse is a set of call center management software from the U.S. company Cisco Cisco. The software enhances call center service quality, improves customer experience, and increases agent satisfaction. A cross-site request forgery vulnerability exists in Cisco Finesse, which could be...
sp mode mail issue where emails in the process of creation may be accessed
Overview sp mode mail provided by NTT DOCOMO contains an application link interface so that mail data can be exchanged with external application during email creation. When the application to be linked is selected, the email contents and attachment are saved to the SD card, therefore other Androi...
CVE-2011-1717
Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which allows local applications to read user IDs, contacts, phone numbers, date of birth, instant message logs, and other private information...