CVE-2023-21469

Improper access control vulnerability in SLocation prior to SMR Apr-2022 Release 1 allows local attackers to get device location information using com.samsung.android.wifi.GEOFENCE action...

CVE-2023-21442

Improper access control vulnerability in Runestone application prior to version 2.9.09.003 in Android R11 and 3.2.01.007 in Android S12 allows local attackers to get device location information...

CVE-2023-21442

CVE-2023-21442 affects the Runestone app. The vulnerability is due to improper access control in Runestone versions prior to 2.9.09.003 on Android R (11) and prior to 3.2.01.007 on Android S (12). Local attackers could obtain device location information. Remediation: upgrade to Runestone 2.9.09.0...

CVE-2023-21442

Improper access control vulnerability in Runestone application prior to version 2.9.09.003 in Android R11 and 3.2.01.007 in Android S12 allows local attackers to get device location information...

Phishing Spy Campaign Targets Top Mideast Officials

Researchers have discovered a phishing campaign that infected Android devices with custom surveillance-ware bent on extracting data from top officials, primarily in the Middle East. Researchers at Lookout Security told Threatpost that the tool, dubbed Stealth Mango, has been used to collect over ...