EUVD-2018-2953

Malware in sbrugna...

EUVD-2020-1801

Malware in sbrugna...

CVE-2019-15340

The Xiaomi Redmi 6 Pro Android device with a build fingerprint of xiaomi/sakuraindia/sakuraindia:8.1.0/OPM1.171019.019/V9.6.4.0.ODMMIFD:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app versionCode=1, versionName=QL1715201805292006 that allows any app...

CVE-2023-38297

An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...

CVE-2023-38297

CVE-2023-38297 affects the pre-installed com.factory.mmigroup app (version 2.1) on multiple Android devices. The component runs as the system user and exposes zero-permission capabilities to local apps, including arbitrary AT command execution, programmatic factory reset, IMEI/serial leakage, pow...

SUSE CVE-2018-10892

The default OCI linux spec in oci/defaultslinux.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness...

[SECURITY] Fedora 33 Update: blueman-2.1.4-1.fc33

Blueman is a tool to use Bluetooth devices. It is designed to provide simpl e, yet effective means for controlling BlueZ API and simplifying bluetooth tas ks such as: - Connecting to 3G/EDGE/GPRS via dial-up - Connecting to/Creating bluetooth networks - Connecting to input devices - Connecting to...

CVE-2020-0298

In Bluetooth, there is a possible control over Bluetooth enabled state due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID...

Design/Logic Flaw

The BlueZ system service in Tizen allows an unprivileged process to partially control Bluetooth or acquire sensitive information, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2...

Design/Logic Flaw

The Xiaomi Redmi 6 Pro Android device with a build fingerprint of xiaomi/sakuraindia/sakuraindia:8.1.0/OPM1.171019.019/V9.6.4.0.ODMMIFD:user/release-keys contains a pre-installed app with a package name of com.huaqin.factory app versionCode=1, versionName=QL1715201805292006 that allows any app...

UBUNTU-CVE-2018-10892

The default OCI linux spec in oci/defaultslinux.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling bluetooth or turning up/down keyboard brightness...