100 matches found
EUVD-2017-18451
Malware in sbrugna...
EUVD-2017-15472
Malware in sbrugna...
EUVD-2017-15380
Malware in sbrugna...
EUVD-2017-15505
Malware in sbrugna...
EUVD-2018-20418
Malware in sbrugna...
EUVD-2018-2265
Malware in sbrugna...
EUVD-2023-31384
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-10187
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In radare2 2.5.0, there is a heap-based buffer over-read in the dalvikop function libr/anal/p/analdalvik.c. Remote attackers could leverage this vulnerability t...
Linux Distros Unpatched Vulnerability : CVE-2018-8808
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In radare2 2.4.0, there is a heap-based buffer over-read in the rasmdisassemble function of asm.c. Remote attackers could leverage this vulnerability to cause a...
Linux Distros Unpatched Vulnerability : CVE-2018-10186
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In radare2 2.5.0, there is a heap-based buffer over-read in the rhexbin2str function libr/util/hex.c. Remote attackers could leverage this vulnerability to caus...
Linux Distros Unpatched Vulnerability : CVE-2017-6387
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dexloadcode function in libr/bin/p/bindex.c in radare2 1.2.1 allows remote attackers to cause a denial of service out-of-bounds read and application crash v...
Linux Distros Unpatched Vulnerability : CVE-2018-8809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In radare2 2.4.0, there is a heap-based buffer over-read in the dalvikop function of analdalvik.c. Remote attackers could leverage this vulnerability to cause a...
CVE-2017-9520
The rconfigset function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted DEX file...
Directory traversal
Directory Traversal vulnerability found in T-ME Studios Change Color of Keypad v.1.275.1.277 allows a remote attacker to execute arbitrary code via the dex file in the internal storage...
CVE-2023-27648
Directory Traversal vulnerability found in T-ME Studios Change Color of Keypad v.1.275.1.277 allows a remote attacker to execute arbitrary code via the dex file in the internal storage...
Timmystudios Fast Typing Keyboard 路径遍历漏洞
Timmystudios Fast Typing Keyboard is an Android app keyboard by Timmystudios. A security vulnerability exists in Timmystudios Fast Typing Keyboard version 1.275.1.277, which stems from a directory traversal vulnerability. The vulnerability can be exploited to execute arbitrary code via a dex file...
CVE-2022-36039 Out-of-bounds write when parsing DEX files in Rizin
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to out-of-bounds write when parsing DEX files. A user opening a malicious DEX file could be affected by this vulnerability, allowing an attacker to execute code on the user's...
Rizin 缓冲区错误漏洞
Rizin is a free open source reverse engineering framework from the Rizin organization. It is used for analyzing binary files, disassembling code, debugging programs, as a forensic tool, as a scriptable command-line hex editor capable of opening disk files, and more. A buffer error vulnerability...
GitHub Security Lab: porcupiney.hairs : Java/Android - Insecure Loading of a Dex File
This bug was reported directly to GitHub Security Lab...
Joker Malware Apps Once Again Bypass Google's Security to Spread via Play Store
Cybersecurity researchers took the wraps off yet another instance of Android malware hidden under the guise of legitimate applications to stealthily subscribe unsuspecting users for premium services without their knowledge. In a report published by Check Point research today, the malware —...