Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

13 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2015-1675

Malware in sbrugna...

4.3CVSS6.4AI score0.00059EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-20470

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This coul...

7.8CVSS7.5AI score0.00021EPSS
Exploits0References2
OSV
OSVadded 2025/02/01 12:0 a.m.21 views

ASB-A-353240784

In multiple functions of AppWidgetServiceImpl.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

6.9AI score
Exploits0References2
NVD
NVDadded 2022/12/13 4:15 p.m.12 views

CVE-2022-20470

In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS0.00021EPSS
Exploits0References1
Prion
Prionadded 2022/12/13 4:15 p.m.10 views

Input validation

In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

4.3CVSS7.7AI score0.00021EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/13 12:0 a.m.3 views

PT-2022-14688 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-13 Description: The issue is related to improper input validation in the bindRemoteViewsService function of AppWidgetServiceImpl.java. This could allow bypassing background activity launch...

7.8CVSS7.6AI score0.00021EPSS
Exploits0References5
CVE
CVEadded 2022/12/13 12:0 a.m.132 views

CVE-2022-20470

CVE-2022-20470 affects Android where bindRemoteViewsService in AppWidgetServiceImpl.java can bypass background activity launch due to improper input validation, enabling local elevation of privilege without extra privileges. Affected: Android 10–13 (per README). Connected documents corroborate th...

7.8CVSS7.7AI score0.00021EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2022/12/01 12:0 a.m.20 views

ASB-A-234013191

In bindRemoteViewsService of AppWidgetServiceImpl.java, there is a possible way to bypass background activity launch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00021EPSS
Exploits0References2
NVD
NVDadded 2015/10/01 12:59 a.m.14 views

CVE-2015-1541

The AppWidgetServiceImpl implementation in com/android/server/appwidget/AppWidgetServiceImpl.java in the Settings application in Android before 5.1.1 LMY48I allows attackers to obtain a URI permission via an application that sends an Intent with a 1 FLAGGRANTREADURIPERMISSION or 2...

4.3CVSS6.3AI score0.00059EPSS
Exploits0References2
Prion
Prionadded 2015/10/01 12:59 a.m.20 views

Design/Logic Flaw

The AppWidgetServiceImpl implementation in com/android/server/appwidget/AppWidgetServiceImpl.java in the Settings application in Android before 5.1.1 LMY48I allows attackers to obtain a URI permission via an application that sends an Intent with a 1 FLAGGRANTREADURIPERMISSION or 2...

4.3CVSS6.8AI score0.00059EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCveadded 2015/10/01 12:59 a.m.26 views

CVE-2015-1541

The AppWidgetServiceImpl implementation in com/android/server/appwidget/AppWidgetServiceImpl.java in the Settings application in Android before 5.1.1 LMY48I allows attackers to obtain a URI permission via an application that sends an Intent with a 1 FLAGGRANTREADURIPERMISSION or 2...

4.3CVSS5.9AI score0.00059EPSS
Exploits0References3
Cvelist
Cvelistadded 2015/10/01 12:0 a.m.23 views

CVE-2015-1541

The AppWidgetServiceImpl implementation in com/android/server/appwidget/AppWidgetServiceImpl.java in the Settings application in Android before 5.1.1 LMY48I allows attackers to obtain a URI permission via an application that sends an Intent with a 1 FLAGGRANTREADURIPERMISSION or 2...

6.3AI score0.00059EPSS
Exploits0References2
CVE
CVEadded 2015/10/01 12:0 a.m.53 views

CVE-2015-1541

CVE-2015-1541 affects Android before version 5.1.1 (LMY48I). The issue resides in AppWidgetServiceImpl in Settings, where an application can obtain a URI permission by sending an Intent with FLAG_GRANT_READ_URI_PERMISSION or FLAG_GRANT_WRITE_URI_PERMISSION. This bypasses intended restrictions and...

4.3CVSS6.5AI score0.00059EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder