Lucene search
K

50 matches found

RedHat Linux
RedHat Linux
added 2026/06/15 6:47 a.m.18 views

webkitgtk: An app may be able to access sensitive user data

A flaw was found in WebKitGTK. Processing or loading malicious web content can allow an app to access sensitive user data due to improper data protection...

5.5CVSS5.2AI score0.0014EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/11 6:47 p.m.7 views

EUVD-2025-210115

A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data...

5.5CVSS5.4AI score0.00122EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.11 views

PT-2026-44036

SpSoft AppLock com.sp.protector.free 7.9.40 for Android allows a local attacker with physical access to bypass fingerprint or PIN authentication. Although the app integrates Android's biometric mechanisms, the lock is implemented with a custom overlay that fails to consistently enforce...

5.8AI score0.00136EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.12 views

PT-2026-43382

Name of the Vulnerable Software and Affected Versions Easyelife App lock version 1.9.2 Description An issue in the application allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay instead of utilizing Android's secure authentication APIs. By...

2.4CVSS5.8AI score0.00179EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/26 12:0 a.m.8 views

CVE-2025-68710

Easyelife App lock aka Fingerprint,Applock or locker.app.safe.applocker 1.9.2 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface flows -...

5.8AI score0.00179EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/26 12:0 a.m.31 views

CVE-2025-68708

SailingLab AppLock aka com.alpha.applock 4.3.8 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface flows - insecure navigation through...

0.0019EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.10 views

AppLockZ - TrustedApp App Lock and Fingerprint Lock 安全漏洞

AppLockZ - TrustedApp App Lock and Fingerprint Lock is a mobile application security tool developed by AppLockZ - TrustedApp. Version 4.2.11 of AppLockZ - TrustedApp App Lock and Fingerprint Lock contains a security vulnerability. This vulnerability stems from the PIN lock being implemented as a...

2.4CVSS5.8AI score0.00186EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/12 8:2 p.m.11 views

CVE-2026-44225 Pulpy: Incomplete filesystem sandbox in pulpy.fs bridge allows packaged web apps to read arbitrary user files

Pulpy is a lightweight, cross-platform desktop application packager for web apps. Prior to 0.1.1, Pulpy injects a pulpy.fs JavaScript API into every packaged web application, giving it access to the host filesystem. A validateFsPath function is supposed to sandbox this access, but its blocklist i...

9.3CVSS5.9AI score0.00357EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-41525

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KDE Dolphin before 25.12.3 allows applications in a Flatpak or with AppArmor confinement to open folders outside of the application sandbox without additional...

6.5CVSS5.8AI score0.00127EPSS
Exploits0References3
NVD
NVD
added 2026/03/25 1:17 a.m.4 views

CVE-2026-20651

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.4, macOS Tahoe 26.3. An app may be able to access sensitive user data...

6.2CVSS0.00204EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/25 12:32 a.m.2 views

CVE-2026-28828

A permissions issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data...

5.8AI score0.00344EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/25 12:32 a.m.25 views

CVE-2026-20697

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, macOS Tahoe 26.4. An app may be able to access sensitive user data...

0.00396EPSS
Exploits0References3
CVE
CVE
added 2026/03/25 12:32 a.m.10 views

CVE-2026-28818

CVE-2026-28818 is a logging issue in macOS components that could allow an app to access sensitive user data. The vulnerability is fixed in Apple releases: macOS Sequoia 15.7.5, macOS Sonoma 14.8.5, and macOS Tahoe 26.4. The available sources describe the issue as a data-redaction/logging exposure...

5.3CVSS5.8AI score0.00396EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/25 12:31 a.m.2 views

CVE-2026-28870

An information leakage was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An app may be able to access sensitive user data...

5.8AI score0.0016EPSS
Exploits0References6
NVD
NVD
added 2026/02/11 11:16 p.m.13 views

CVE-2026-20666

An authorization issue was addressed with improved state management. This issue is fixed in macOS Tahoe 26.3. An app may be able to access sensitive user data...

5.5CVSS0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:30 p.m.7 views

CVE-2023-40424

The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to access user-sensitive data...

5.5CVSS6AI score0.00308EPSS
Exploits0References1
NVD
NVD
added 2025/12/09 4:18 p.m.5 views

CVE-2025-64696

Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache directory. If exploited, application-specific files may be accessed from other malicious applications...

4.8CVSS0.00111EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-49824

Android App "Brother iPrint&Scan" versions 6.13.7 and earlier improperly uses an external cache directory. If exploited, application-specific files may be accessed from other malicious applications...

4.8CVSS6.9AI score0.00111EPSS
Exploits0References2
NVD
NVD
added 2025/11/04 2:15 a.m.2 views

CVE-2025-43469

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access sensitive user data...

5.5CVSS0.00171EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 2:15 a.m.1 views

CVE-2025-43378

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1. An app may be able to access sensitive user data...

5.5CVSS5.7AI score0.00196EPSS
Exploits0References2
Rows per page
Query Builder