CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/06/05 10:15 a.m.•4 views

CVE-2026-21027

Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function...

4.8CVSS5.5AI score0.00084EPSS

Vulnrichment•added 2026/06/05 10:15 a.m.•6 views

CVE-2026-21027

Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function...

4.8CVSS5.4AI score0.00084EPSS

CVE•added 2026/06/05 10:15 a.m.•15 views

CVE-2026-21026

The CVE-2026-21026 entry relates to the Android app SpriteWallpaper, where an improper export of Android components enables local attackers to access sensitive information. AFFECTED: SpriteWallpaper (Android). ROOT CAUSE: components exported improperly, allowing local access to confidential data....

6.4CVSS5.5AI score0.00093EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/06/05 10:15 a.m.•7 views

CVE-2026-21026

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information...

Cvelist•added 2026/06/05 10:15 a.m.•39 views

CVE-2026-21026

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information...

6.4CVSS0.00093EPSS

EUVD•added 2026/06/05 10:15 a.m.•8 views

EUVD-2026-34798

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information...

ATTACKERKB•added 2026/06/05 10:15 a.m.•5 views

CVE-2026-21026

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information...

6.4CVSS5.5AI score0.00093EPSS

Positive Technologies•added 2026/06/05 12:0 a.m.•9 views

PT-2026-46922

Name of the Vulnerable Software and Affected Versions Samsung Assistant versions prior to 9.3.14 Description Improper export of android application components in the SmartHomeWidgetReceiver allows a local attacker to execute arbitrary scripts via intent redirection. Intent redirection occurs when...

7.1CVSS5.6AI score0.00093EPSS

Exploits0References4

CNNVD•added 2026/06/05 12:0 a.m.•3 views

SAMSUNG Mobile devices 安全漏洞

Samsung Mobile devices are a series of mobile devices produced by Samsung Electronics in South Korea. This includes smartphones, tablets, etc. Devices prior to the SMR Jun-2026 Release 1 version have a security vulnerability. This vulnerability stems from improper export of Android application...

4.8CVSS5.4AI score0.00084EPSS

Positive Technologies•added 2026/06/05 12:0 a.m.•13 views

PT-2026-46916

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information...

Positive Technologies•added 2026/06/05 12:0 a.m.•7 views

PT-2026-46917

Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function...

4.8CVSS5.4AI score0.00084EPSS

Positive Technologies•added 2026/06/05 12:0 a.m.•14 views

PT-2026-46919

Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to execute privileged operations...

6.8CVSS5.6AI score0.00093EPSS

CNNVD•added 2026/06/05 12:0 a.m.•2 views

SAMSUNG Mobile devices 安全漏洞

Samsung Mobile devices are a series of mobile devices produced by Samsung Electronics in South Korea. This includes smartphones, tablets, etc. Devices prior to the SMR Jun-2026 Release 1 version have security vulnerabilities. These vulnerabilities stem from improper export of Android application...

Redos•added 2026/06/05 12:0 a.m.•3 views

ROS-20260605-73-0052

The vulnerability of the Access API components of Mozilla Firefox, Firefox ESR, and the email client Thunderbird relates to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

10CVSS5.5AI score0.00406EPSS

Exploits0

EUVD•added 2026/06/04 3:23 p.m.•8 views

EUVD-2026-33994

React Router vulnerable to Denial of Service via reflected user input in single-fetch...

7.5CVSS5.8AI score0.00258EPSS

Exploits0References5

OSV•added 2026/06/04 10:1 a.m.•3 views

MINI-JPFV-4QF8-3F3Q

Bulletin has no description...

5.7AI score

Exploits0

NVD•added 2026/06/04 6:16 a.m.•9 views

CVE-2026-49189

Unchecked public access permissions on a core Broadcast Receiver allow unauthorized local software components to invoke administrative operations...

8.5CVSS0.00098EPSS

CVE•added 2026/06/04 5:23 a.m.•19 views

CVE-2026-49189

CVE-2026-49189 involves unchecked public access permissions on a core Broadcast Receiver, enabling unauthorized local software components to invoke administrative operations. The available documents identify the vulnerable component as a Broadcast Receiver and describe the root cause as permissio...

8.5CVSS5.8AI score0.00098EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/06/04 5:23 a.m.•9 views

CVE-2026-49189

Unchecked public access permissions on a core Broadcast Receiver allow unauthorized local software components to invoke administrative operations...

8.5CVSS5.8AI score0.00098EPSS