EUVD-2021-28235

Malicious code in bioql PyPI...

PT-2025-26817 · Apache · Apache Device Passcode Authentication Service

Name of the Vulnerable Software and Affected Versions: Apache Device Passcode Authentication Service affected versions not specified Description: An authenticated attacker can reconfigure the target device to use an external service, such as LDAP or FTP, controlled by the attacker. If an existing...

UBUNTU-CVE-2024-11703

On Android, Firefox may have inadvertently allowed viewing saved passwords without the required device PIN authentication. This vulnerability affects Firefox 133...

Secure Encryption Bypass

github.com/wireapp/wire-ios is vulnerable to bypass of secure encryption. Mandatory encryption at rest feature can be pypassed when the device passcode is disabled or is not set. The users will not be aware of inactivation of encryption at rest as the feature is hidden to them...

CVE-2021-41094

Wire is an open source secure messenger. Users of Wire by Bund may bypass the mandatory encryption at rest feature by simply disabling their device passcode. Upon launching, the app will attempt to enable encryption at rest by generating encryption keys via the Secure Enclave, however it will fai...

Design/Logic Flaw

Wire is an open source secure messenger. Users of Wire by Bund may bypass the mandatory encryption at rest feature by simply disabling their device passcode. Upon launching, the app will attempt to enable encryption at rest by generating encryption keys via the Secure Enclave, however it will fai...

PT-2021-23083 · Wire · Wire

Name of the Vulnerable Software and Affected Versions: Wire versions prior to 3.70 Description: The issue allows users to bypass the mandatory encryption at rest feature by disabling their device passcode. When the app launches, it attempts to enable encryption at rest by generating encryption ke...