Lucene search
K

1919 matches found

Packet Storm News
Packet Storm News
added 2026/03/31 12:0 a.m.1 views

An Empirical Comparison of Security and Privacy Characteristics of Android Messaging Apps

Mobile messaging apps are a fundamental communication infrastructure, used by billions of people every day to share information, including sensitive data. Security and Privacy are thus critical concerns for such applications. Although the cryptographic protocols prevalent in messaging apps are...

6AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-10343

Malware in sbrugna...

7.8CVSS7.6AI score0.00633EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:22 p.m.11 views

CVE-2021-23244

ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission...

7.8CVSS6.7AI score0.00633EPSS
Exploits0References1
OSV
OSV
added 2023/06/01 12:0 a.m.5 views

PUB-A-225880325

In updatePermissionTreeSourcePackage of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...

7.8CVSS7.7AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2023/03/24 8:15 p.m.5 views

CVE-2023-20971

In removePermission of PermissionManagerServiceImpl.java, there is a possible way to obtain dangerous permissions without user consent due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

7.8CVSS5.9AI score0.00105EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.5 views

PT-2023-17759 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a logic error in the removePermission method of PermissionManagerServiceImpl.java, which could allow obtaining dangerous...

7.8CVSS7.7AI score0.00105EPSS
Exploits0References6
Kitploit
Kitploit
added 2022/03/17 11:30 a.m.31 views

PurplePanda - Identify Privilege Escalation Paths Within And Across Different Clouds

This tool fetches resources from different cloud/saas applications focusing on permissions in order to identifyprivilege escalation paths and dangerous permissions in the cloud/saas configurations. Note that PurplePanda searches both privilegesescalation paths within a platform and across...

7.3AI score
Exploits0References4
OSV
OSV
added 2021/12/27 7:15 p.m.2 views

CVE-2021-23244

ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission...

7.8CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2021/12/27 7:15 p.m.14 views

Design/Logic Flaw

ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission...

6.8CVSS7.4AI score0.00633EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/12/27 6:48 p.m.48 views

CVE-2021-23244

ColorOS is affected by a vulnerability where dangerous permissions are pre-granted to apps listed in a whitelist XML named default-grant-permissions. If an app from the whitelist is not installed, an attacker can masquerade with the same package name to obtain those dangerous permissions. The iss...

7.8CVSS7.4AI score0.00633EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/27 6:48 p.m.21 views

CVE-2021-23244

ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission...

7.7AI score0.00633EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/12/27 12:0 a.m.5 views

OPPO ColorOS 安全漏洞

OPPO ColorOS is a suite of Android-based operating systems for mobile devices from China's OPPO Guangdong Mobile Communications OPPO. ColorOS suffers from a security vulnerability that stems from ColorOS pre-granting dangerous permissions to applications listed in a whitelisted xml named...

7.8CVSS7.4AI score0.00633EPSS
Exploits0References2
OSV
OSV
added 2021/07/08 2:15 p.m.3 views

CVE-2021-25428

Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...

7.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2021/07/08 2:15 p.m.17 views

CVE-2021-25428

Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...

7.8CVSS0.00102EPSS
Exploits0References1
Prion
Prion
added 2021/07/08 2:15 p.m.16 views

Input validation

Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...

4.6CVSS7.5AI score0.00102EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/08 1:43 p.m.24 views

CVE-2021-25428

Improper validation check vulnerability in PackageManager prior to SMR July-2021 Release 1 allows untrusted applications to get dangerous level permission without user confirmation in limited circumstances...

7.7AI score0.00102EPSS
Exploits0References1
HackRead
HackRead
added 2019/09/11 5:32 p.m.61 views

100s of Flashlight apps on Play Store ask for dangerous permissions

By Sudais Just now Avast has released a report that details an analysis of 937 flashlight apps on Google's Play Store and the variety of permissions that they seek which can be categorized into the following. This is a post from HackRead.com Read the original post: 100s of Flashlight apps on Play...

0.9AI score
Exploits0
HackRead
HackRead
added 2019/03/11 4:37 p.m.55 views

More than Half of Android apps ask for dangerous permissions. Is yours among?

By John Mason It wasn’t very long ago that I revealed that most free VPN services are provided as a front for the big corporations running them to collect user that. Spurred by the findings of that study, I decided to dig deeper to see how much of a threat, especially when it comes to user data,...

0.8AI score
Exploits0
hackapp
hackapp
added 2017/12/02 8:30 p.m.493 views

biFoto - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application biFoto published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2017/08/02 11:1 a.m.18 views

90 numbers - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application 90 numbers published at the 'play' market has multiple vulnerabilities...

1.7AI score
Exploits0References1Affected Software1
Rows per page
Query Builder