“Sneaky” new Android malware takes over your phone, hiding in fake news and ID apps

Researchers at Cyfirma have investigated Android Trojans capable of stealing sensitive data from compromised devices. The malware spreads by pretending to be trusted apps—like a news reader or even digital ID apps—tricking users into downloading it by accident. In reality, it’s Android-targeting...

EUVD-2014-0930

Malware in sbrugna...

EUVD-2014-7876

Malware in sbrugna...

PT-2025-36074

Name of the Vulnerable Software and Affected Versions: DevicePolicyManagerService.java affected versions not specified Description: A logic error in the handlePackagesChanged function within DevicePolicyManagerService.java may lead to a denial-of-service DoS condition affecting a device admin...

CVE-2018-11427

CSRF tokens are not used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, which makes it possible to perform CSRF attacks on the device administrator...

CVE-2025-0110

A command injection vulnerability in the Palo Alto Networks PAN-OS OpenConfig plugin enables an authenticated administrator with the ability to make gNMI requests to the PAN-OS management web interface to bypass system restrictions and run arbitrary commands. The commands are run as the...

CVE-2024-42905

Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file...

CVE-2024-42905

Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file...

CVE-2024-42905

The CVE-2024-42905 entry covers Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v7.4.12.60, which has a command execution vulnerability in the getVar function of code/function/system/tool/ping.php. This issue can allow an attacker to obtain device administrator privileges via a network ...

CVE-2024-34257

TOTOLINK EX1800T V9.1.0cu.2112B20220316 has a vulnerability in the apcliEncrypType parameter that allows unauthorized execution of arbitrary commands, allowing an attacker to obtain device administrator privileges...

CVE-2024-34257

TOTOLINK EX1800T V9.1.0cu.2112B20220316 has a vulnerability in the apcliEncrypType parameter that allows unauthorized execution of arbitrary commands, allowing an attacker to obtain device administrator privileges...

CVE-2024-34257

TOTOLINK EX1800T is affected by a command injection flaw in the apcliEncrypType parameter (firmware 9.1.0cu.2112_B20220316). The vulnerability allows unauthenticated attackers to execute arbitrary commands and gain device administrator privileges. Root cause: improper handling of the apcliEncrypT...

Linksys RE7000 Command Injection Vulnerability

The Linksys RE7000 is a wireless signal extender from Linksys USA. The Linksys RE7000 suffers from a command injection vulnerability that stems from the AccessControlList parameter failing to properly filter constructed command special characters, commands, and so on. An attacker can exploit this...

CVE-2024-25852

Linksys RE7000 is affected by CVE-2024-25852 (v2.0.9, v2.0.11, v2.0.15) due to a command execution vulnerability in the AccessControlList parameter of the access control function point. The vulnerability allows an attacker to achieve device administrator rights via command execution. The connecte...

VulnCheck KEV: CVE-2024-29748

Android Pixel contains a privilege escalation vulnerability that allows an attacker to interrupt a factory reset triggered by a device admin app...

CVE-2024-23806

Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could include credential and device administrator keys...

Default configuration

Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could include credential and device administrator keys...

CVE-2024-23806

CVE-2024-23806 targets HID iCLASS SE reader configuration cards and related devices. The vulnerability is described as Improper Authorization (CWE-285) and can allow reading sensitive data from the configuration cards, including credential and device administrator keys. Affected products include ...

CVE-2024-23806 HID Global Reader Configuration Cards Improper Authorization

Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could include credential and device administrator keys...

PT-2023-25262 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a missing permission check in the onCreate method of DeviceAdminAdd.java, which could allow a device admin to be forcibly added. This could lead to local denial of...