95 matches found
EUVD-2025-23777
Malicious code in bioql PyPI...
EUVD-2024-15855
Malicious code in bioql PyPI...
Malicious code in exercise-evaluation (npm)
The package exercise-evaluation was found to contain malicious code...
MAL-2025-20043 Malicious code in exercise-evaluation (npm)
The package exercise-evaluation was found to contain malicious code...
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
CVE-2025-21013
CVE-2025-21013 describes an improper access control vulnerability in SemSensorManager on Galaxy Watch devices. The issue allows local attackers to access sensitive user data, specifically outdoor exercise and sleep time information. Affected component is SemSensorManager; underlying cause is impr...
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
CVE-2025-21013
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Aug-2025 Release 1 prior to Release 1, which stems from improper access control of...
PT-2025-32104 · Samsung · Galaxy Watch
Name of the Vulnerable Software and Affected Versions: Galaxy Watch versions prior to SMR Aug-2025 Release 1 Description: Improper access control in SemSensorManager allows local attackers to access sensitive information related to outdoor exercise and sleep time. Recommendations: Update Galaxy...
RANsacked: Over 100 Security Flaws Found in LTE and 5G Network Implementations
A group of academics has disclosed details of over 100 security vulnerabilities impacting LTE and 5G implementations that could be exploited by an attacker to disrupt access to service and even gain a foothold into the cellular core network. The 119 vulnerabilities, assigned 97 unique CVE...
How to handle vulnerability reports in aviation
TL;DR Always thank researchers for reporting vulnerabilities. Acknowledging their efforts can set the right tone. Lead all communications with researchers. Don’t let legal or PR teams take over. Provide regular updates to avoid miscommunication. Keep researchers informed throughout the process. W...
exercisebookmachine.com Cross Site Scripting vulnerability OBB-3920289
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Space Force Is Planning a Military Exercise in Orbit
Two satellites will engage in a “realistic threat response scenario” when Victus Haze gets underway...
CVE-2024-0052
In multiple functions of healthconnect, there is a possible leakage of exercise route data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Information disclosure
In multiple functions of healthconnect, there is a possible leakage of exercise route data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-0052
In multiple functions of healthconnect, there is a possible leakage of exercise route data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-0052
In multiple functions of healthconnect, there is a possible leakage of exercise route data due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Chamilo LMS Security Vulnerability
Chamilo LMS is an open source online learning and collaboration system from the Chamilo Association. The system supports the creation of instructional content, distance training, and online question and answer sessions. A security vulnerability exists in Chamilo LMS version v1.11.24 and prior...