CVE-2021-22352

There is a Configuration Defect Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands...

New ‘DroidLock’ Android Malware Locks Users Out, Spies via Front Camera

Zimperium zLabs reveals DroidLock, a new Android malware acting like ransomware that can hijack Android devices, steal credentials via phishing, and stream your screen via VNC...

EUVD-2013-2715

Malware in sbrugna...

CVE-2021-22403

There is a vulnerability of hijacking unverified providers in Huawei Smartphone.Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands...

CVE-2025-41645

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake...

CVE-2025-41645 SMA: Sunny Portal demo system privilege escalation

An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake...

CVE-2025-41645

Technical details about CVE-2025-41645 are not publicly provided in the supplied documents. Monitor for updates from connected sources.

PT-2025-20840 · Sma · Www.Sunnyportal.Com

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake. Recommendations: At the moment, there is no...

CVE-2025-25276

An unauthenticated attacker can hijack other users' devices and potentially control them...

CVE-2025-25276 Growatt Cloud portal Authorization Bypass Through User-Controlled Key

An unauthenticated attacker can hijack other users' devices and potentially control them...

PT-2025-16483

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description An unauthenticated attacker can hijack other users' devices and potentially control them. Recommendations At the moment, there is no information about a newer version that contains a fix for...

CVE-2024-36557

CVE-2024-36557 affects Forever KidsWatch Call Me KW50 and KW60 variants where the device ID is based on IMEI. A malicious user can hijack a registered unit by changing the IMEI to that of another unit in the mobile app, enabling remote control of the device via the app. The vulnerability is roote...

CVE-2024-36557

The device ID is based on IMEI in Forever KidsWatch Call Me KW50 R36YDRA3PWGM7SV1.02019071516.19.24cobh and Forever KidsWatch Call Me 2 KW60 R36CWYDES4A292V1.02023.05.2422.49.44cobb. If a malicious user changes the IMEI to the IMEI of a unit they registered in the mobile app, it is possible to...

ThroughTek Kalay P2P SDK Improper Access Control (CVE-2021-28372)

ThroughTek's Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek TUTK device given a valid 20-byte uniquely assigned identifier UID. This could result in an attacker hijacking a victim's connection and forcing them into supplying credentials needed to access the...

Huawei Emui and Magic UI Hijacking Unauthenticated Provider Vulnerability

Huawei Emui is a mobile operating system developed based on Android.Magic Ui is a mobile operating system developed based on Android. A security vulnerability exists in Huawei Emui and Magic UI, which stems from the existence of a hijacking unauthenticated provider vulnerability that can be...

CVE-2021-28372

ThroughTek's Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek TUTK device given a valid 20-byte uniquely assigned identifier UID. This could result in an attacker hijacking a victim's connection and forcing them into supplying credentials needed to access the...

Researchers Warn of Critical Bugs Affecting Realtek Wi-Fi Module

A new set of critical vulnerabilities has been disclosed in the Realtek RTL8170C Wi-Fi module that an adversary could abuse to gain elevated privileges on a device and hijack wireless communications. "Successful exploitation would lead to complete control of the Wi-Fi module and potential root...

Killcast - Manipulate Chromecast Devices In Your Network

Manipulate Chromecast Devices in your Network. Inspiration - Thousands of Google Chromecast Devices Hijacked to Promote PewDiePie This tool is a Proof of Concept and is for Research Purposes Only, killcast shows how Chromecast devices can be easily manipulated and hijacked by anyone. Features...

HackPwn: nine Yang smart soymilk crack the details of the analysis-vulnerability warning-the black bar safety net

Nine male DJ08B-D667SG soymilk is a smart milk machine, you can configure the WIFI connection to the Internet, the user can through the“nine Yang cloud appliances”mobile app for soymilk for remote control, remote turn on, turn off the milk machine and other functions. While in 2 0 1 5 HackPwn,...