22 matches found
EUVD-2021-3210
Malicious code in bioql PyPI...
CVE-2024-27207
Exported broadcast receivers allowing malicious apps to bypass broadcast protection...
CVE-2022-25679
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
CVE-2024-27207
Exported broadcast receivers allowing malicious apps to bypass broadcast protection...
CVE-2024-27207
Exported broadcast receivers allowing malicious apps to bypass broadcast protection...
CVE-2024-27207
Exported broadcast receivers allowing malicious apps to bypass broadcast protection...
CVE-2024-27207
Exported broadcast receivers allowing malicious apps to bypass broadcast protection...
CVE-2023-47889
The Android application BINHDRM26 com.bdrm.superreboot 1.0.3, exposes several critical actions through its exported broadcast receivers. These exposed actions can allow any app on the device to send unauthorized broadcasts, leading to unintended consequences. The vulnerability is particularly...
Code injection
The Android application BINHDRM26 com.bdrm.superreboot 1.0.3, exposes several critical actions through its exported broadcast receivers. These exposed actions can allow any app on the device to send unauthorized broadcasts, leading to unintended consequences. The vulnerability is particularly...
CVE-2023-47889
The CVE affects the Android app BINHDRM26 (com.bdrm.superreboot) version 1.0.3, where exported broadcast receivers expose actions that allow any on-device app to send unauthorized broadcasts, including powering off, reboot, and entering recovery mode. This is a local-attack surface with potential...
CVE-2023-47355
The com.eypcnnapps.quickreboot aka Eyuep Can Yilmaz ROOT Quick Reboot application 1.0.8 for Android has exposed broadcast receivers for PowerOff, Reboot, and Recovery e.g., com.eypcnnapps.quickreboot.widget.PowerOff that are susceptible to unauthorized broadcasts because of missing input validati...
Input validation
The com.eypcnnapps.quickreboot aka Eyuep Can Yilmaz ROOT Quick Reboot application 1.0.8 for Android has exposed broadcast receivers for PowerOff, Reboot, and Recovery e.g., com.eypcnnapps.quickreboot.widget.PowerOff that are susceptible to unauthorized broadcasts because of missing input validati...
CVE-2023-47355
The com.eypcnnapps.quickreboot aka Eyuep Can Yilmaz ROOT Quick Reboot application 1.0.8 for Android has exposed broadcast receivers for PowerOff, Reboot, and Recovery e.g., com.eypcnnapps.quickreboot.widget.PowerOff that are susceptible to unauthorized broadcasts because of missing input validati...
CVE-2022-25679
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
Improper access control
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
PT-2022-17457 · Qualcomm · Snapdragon Wearables +4
Name of the Vulnerable Software and Affected Versions: Snapdragon Compute affected versions not specified Snapdragon Consumer IOT affected versions not specified Snapdragon Industrial IOT affected versions not specified Snapdragon Mobile affected versions not specified Snapdragon Wearables affect...
CVE-2022-25679
Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...
CVE-2022-25679
CVE-2022-25679 concerns a denial of service in video caused by improper access control in broadcast receivers across Qualcomm Snapdragon platforms (Compute, Consumer IOT, Industrial IOT, Mobile, Wearables). Multiple sources (NVD, Red Hat, PRION, CVE CVEList) corroborate the issue and its scope to...
CVE-2021-1035
In setLaunchIntent of BluetoothDevicePickerPreferenceController.java, there is a possible way to invoke an arbitrary broadcast receiver due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2021-0591
In sendReplyIntentToReceiver of BluetoothPermissionActivity.java, there is a possible way to invoke privileged broadcast receivers due to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product:...