7 matches found
EUVD-2019-6385
Malware in sbrugna...
CVE-2019-15384
The Elephone A4 Android device with a build fingerprint of Elephone/A4/A4:8.1.0/O11019/20180530.143559:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a system...
Elephone A4 Access Control Error Vulnerability
Elephone A4 is a smartphone from China's ELEPHONE Communication Technology. An Access Control Error vulnerability exists in the Elephone A4. The vulnerability arises from a network system or product that does not properly restrict access to resources from unauthorized roles and can be exploited b...
CVE-2019-15384
The Elephone A4 Android device with a build fingerprint of Elephone/A4/A4:8.1.0/O11019/20180530.143559:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a system...
Authorization
The Elephone A4 Android device with a build fingerprint of Elephone/A4/A4:8.1.0/O11019/20180530.143559:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a system...
CVE-2019-15384
CVE-2019-15384 affects the Elephone A4 Android device. A pre-installed component com.mediatek.wfo.impl exposes an interface that allows any app co-located on the device to modify a system property without proper authorization. Root cause: an exported interface without adequate access controls. Im...
CVE-2019-15384
The Elephone A4 Android device with a build fingerprint of Elephone/A4/A4:8.1.0/O11019/20180530.143559:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a system...