12 matches found
EUVD-2025-21763
Malicious code in bioql PyPI...
EUVD-2025-21764
Malicious code in bioql PyPI...
EUVD-2025-21762
Malicious code in bioql PyPI...
CVE-2025-5344
Bluebird devices contain a pre-loaded kiosk application. This application exposes an unsecured service provider "com.bluebird.kiosk.launcher.IpartnerKioskRemoteService". A local attacker can bind to the AIDL-type service to modify device's global settings and wallpaper image. This issue affects a...
CVE-2025-5346
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
CVE-2025-5345
Bluebird devices contain a pre-loaded file manager application. This application exposes an unsecured service provider "com.bluebird.system.koreanpost.IsdcardRemoteService". A local attacker can bind to the AIDL-type service to copy and delete arbitrary files from device's storage with system-lev...
CVE-2025-5346
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
CVE-2025-5345
Bluebird devices contain a pre-loaded file manager application. This application exposes an unsecured service provider "com.bluebird.system.koreanpost.IsdcardRemoteService". A local attacker can bind to the AIDL-type service to copy and delete arbitrary files from device's storage with system-lev...
CVE-2025-5344
Bluebird devices contain a pre-loaded kiosk application. This application exposes an unsecured service provider "com.bluebird.kiosk.launcher.IpartnerKioskRemoteService". A local attacker can bind to the AIDL-type service to modify device's global settings and wallpaper image. This issue affects a...
CVE-2025-5346 File removal via path traversal in unsecured broadcast receiver in Bluebird barcode scanner application
Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver "kr.co.bluebird.android.bbsettings.BootReceiver". A local attacker can call the receiver to overwrite file containing ".json" keyword with default barcode config file. It is...
PT-2025-29906 · Unknown · Bluebird Devices
Name of the Vulnerable Software and Affected Versions: Bluebird devices version 1.4.4 Bluebird devices version 1.3.6 Description: Bluebird devices contain a pre-loaded file manager application that exposes an unsecured service provider com.bluebird.system.koreanpost.IsdcardRemoteService. A local...
PT-2025-29905 · Blubird · Bluebird Devices
Name of the Vulnerable Software and Affected Versions: Bluebird devices versions prior to 1.1.2 Description: Bluebird devices contain a pre-loaded kiosk application that exposes an unsecured service provider, com.bluebird.kiosk.launcher.IpartnerKioskRemoteService. A local attacker can bind to the...