EUVD-2023-45826

Malicious code in bioql PyPI...

EUVD-2025-26626

Malicious code in bioql PyPI...

EUVD-2024-54959

Malicious code in bioql PyPI...

CVE-2025-21030

Improper handling of insufficient permission in AppPrelaunchManagerService prior to SMR Sep-2025 Release 1 in Chinese Android 15 allows local attackers to execute arbitrary application in the background...

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management...

CVE-2025-21030

Improper handling of insufficient permission in AppPrelaunchManagerService prior to SMR Sep-2025 Release 1 in Chinese Android 15 allows local attackers to execute arbitrary application in the background...

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management...

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management...

CVE-2025-21030

Summary for CVE-2025-21030 : The vulnerability affects Samsung Mobile devices running Android with the AppPrelaunchManagerService. It stems from improper handling of insufficient permissions in the service, exposing a local attack surface that can let a non-privileged attacker cause arbitrary app...

CVE-2025-21030

Improper handling of insufficient permission in AppPrelaunchManagerService prior to SMR Sep-2025 Release 1 in Chinese Android 15 allows local attackers to execute arbitrary application in the background...

CVE-2025-21025

Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management...

CVE-2025-21025

CVE-2025-21025 affects MARsExemptionManager in Samsung Mobile devices. The issue is improper access control in MARsExemptionManager before SMR Sep-2025 Release 1, enabling a local attacker to be excluded from background execution management. Documented details indicate the vulnerability is local ...

PT-2025-35679

Name of the Vulnerable Software and Affected Versions: MARsExemptionManager versions prior to SMR Sep-2025 Release 1 Description: Improper access control in MARsExemptionManager allows local attackers to be excluded from background execution management. Recommendations: Update MARsExemptionManage...

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Sep-2025 Release 1, which stems from improper handling of permissions...

CVE-2025-22437

In setMediaButtonReceiver of multiple files, there is a possible way to launch arbitrary activities from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2025-35617

Name of the Vulnerable Software and Affected Versions: ConnectionServiceWrapper.java affected versions not specified Description: Multiple functions within ConnectionServiceWrapper.java contain a logic error that may allow for the indefinite retention of a permission in the background. Exploitati...

CVE-2023-21089

In startInstrumentation of ActivityManagerService.java, there is a possible way to keep the foreground service alive while the app is in the background. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21099

In multiple methods of PackageInstallerSession.java, there is a possible way to start foreground services from the background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2024-34723

In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

PT-2023-30187 · Huawei · Harmonyos

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a vulnerability in the remote PIN module that causes incorrect information storage locations, potentially affecting confidentiality...