44 matches found
EUVD-2009-0740
Malware in sbrugna...
EUVD-2015-4331
Malware in sbrugna...
EUVD-2025-21762
Malicious code in bioql PyPI...
EUVD-2025-21763
Malicious code in bioql PyPI...
EUVD-2025-21764
Malicious code in bioql PyPI...
MAL-2025-41986 Malicious code in function-bluebird (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in function-bluebird (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-40439 Malicious code in yellow_wj9am_rgchu_bluebird (npm)
The package yellowwj9amrgchubluebird was found to contain malicious code...
Malicious code in bluebird_2qjxm_q5erk_solace (npm)
The package bluebird2qjxmq5erksolace was found to contain malicious code...
MAL-2025-18370 Malicious code in dew_i2ehv_bf5hp_bluebird (npm)
The package dewi2ehvbf5hpbluebird was found to contain malicious code...
CVE-2025-5346
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
CVE-2025-5344
Bluebird devices contain a pre-loaded kiosk application. This application exposes an unsecured service provider "com.bluebird.kiosk.launcher.IpartnerKioskRemoteService". A local attacker can bind to the AIDL-type service to modify device's global settings and wallpaper image. This issue affects a...
CVE-2025-5345
Bluebird devices contain a pre-loaded file manager application. This application exposes an unsecured service provider "com.bluebird.system.koreanpost.IsdcardRemoteService". A local attacker can bind to the AIDL-type service to copy and delete arbitrary files from device's storage with system-lev...
CVE-2025-5345
Bluebird devices contain a pre-loaded file manager application. This application exposes an unsecured service provider "com.bluebird.system.koreanpost.IsdcardRemoteService". A local attacker can bind to the AIDL-type service to copy and delete arbitrary files from device's storage with system-lev...
CVE-2025-5344
Bluebird devices contain a pre-loaded kiosk application. This application exposes an unsecured service provider "com.bluebird.kiosk.launcher.IpartnerKioskRemoteService". A local attacker can bind to the AIDL-type service to modify device's global settings and wallpaper image. This issue affects a...
CVE-2025-5346
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
CVE-2025-5346 File removal via path traversal in unsecured broadcast receiver in Bluebird barcode scanner application
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
CVE-2025-5346
Bluebird devices expose an unsecured broadcast receiver (kr.co.bluebird.android.bbsettings.BootReceiver) in a pre-loaded barcode scanner app. A local attacker can call this receiver to overwrite a file containing the string ".json" with a default barcode config, due to lack of protection against ...
CVE-2025-5346 File removal via path traversal in unsecured broadcast receiver in Bluebird barcode scanner application
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
CVE-2025-5344 Exposed AIDL service allowing for tampering of system secure settings in Bluebird kiosk application
Bluebird devices contain a pre-loaded kiosk application. This application exposes an unsecured service provider "com.bluebird.kiosk.launcher.IpartnerKioskRemoteService". A local attacker can bind to the AIDL-type service to modify device's global settings and wallpaper image. This issue affects a...