103 matches found
PT-2025-3281 · Unknown · Widget Framework Module
Name of the Vulnerable Software and Affected Versions: Widget framework module affected versions not specified Description: The issue concerns a vulnerability of input parameters not being verified in the widget framework module. Successful exploitation of this vulnerability may affect...
BIT-SILVERSTRIPE-2020-6164
In SilverStripe through 4.5.0, a specific URL path configured by default through the silverstripe/framework module can be used to disclose the fact that a domain is hosting a Silverstripe application. There is no disclosure of the specific version. The functionality on this URL path is limited to...
CVE-2023-46763
Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may cause background apps to start maliciously...
Design/Logic Flaw
Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may cause background apps to start maliciously...
CVE-2023-46763
CVE-2023-46763 concerns Huawei HarmonyOS, specifically a vulnerability in the framework module’s background app permission management. Exploitation could allow background apps to start maliciously, as described in multiple sources. The NVD entry cites a CVSS v3.1 base score of 5.3 (Network, Low a...
CVE-2023-46763
Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may cause background apps to start maliciously...
PT-2023-30194 · Huawei · Emui +1
Name of the Vulnerable Software and Affected Versions: Framework module affected versions not specified Description: The issue concerns a vulnerability in the background app permission management within the framework module. Successful exploitation of this vulnerability may cause background apps ...
Huawei HarmonyOS Security Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from improper management of application permissions in the backend of the framework module...
CVE-2023-4565
Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable...
CVE-2023-4565
Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable...
Design/Logic Flaw
Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable...
CVE-2023-4565
Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable...
CVE-2023-4565
CVE-2023-4565 describes a broadcast permission control vulnerability in Huawei HarmonyOS framework module where exploitation could render the hotspot feature unavailable. According to references in NVD and CNVD, the issue is accessible via network with low attack complexity and no privileges requ...
PT-2023-29625 · Huawei · Emui +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A broadcast permission control vulnerability exists in the framework module. Successful exploitation of this issue may cause the hotspot feature to be...
cn.fossc.polaris.framework:basic-framework-spring-boot-starter (>=3.0.9 <=3.0.33), cn.fossc.polaris.framework:polaris-framework-boot (>=3.0.1 <=3.0.33) +29 more potentially affected by CVE-2022-39198 via org.apache.dubbo:dubbo (>=3.0.0 <=3.0.11)
org.apache.dubbo:dubbo MAVEN version =3.0.0, =3.0.9, =3.0.1, =3.0.1, =3.0.1, =1.2.1, =1.2.2 - com.github.shijingsh:common-dubbo =1.6.1 - com.github.shijingsh:common-dubbo-nacos =1.6.1 - com.github.shijingsh:common-web =1.6.1 - com.github.shijingsh:xs-entity =1.6.1 - com.github.shijingsh:xs-job...
CVE-2022-41586
The communication framework module has a vulnerability of not truncating data properly.Successful exploitation of this vulnerability may affect data confidentiality...
CVE-2021-46741
The basic framework and setting module have defects, which were introduced during the design. Successful exploitation of this vulnerability may affect system integrity...
GHSA-GM5X-HPMW-XPXG Silverstripe CMS information disclosure
In SilverStripe through 4.5.0, a specific URL path configured by default through the silverstripe/framework module can be used to disclose the fact that a domain is hosting a Silverstripe application. There is no disclosure of the specific version. The functionality on this URL path is limited to...
SilverStripe Information Disclosure Vulnerability (CNVD-2020-42957)
SilverStripe is New Zealand SilverStripe company's set of open source programming framework and content management system CMS. The system has support for multiple languages , cross-platform and other features . SilverStripe 4.5.0 and previous versions of a security vulnerability . Attackers can...
Android Package Inspector: Inspeckage
Inspeckage is a tool developed to offer dynamic analysis of Android applications. By applying hooks to functions of the Android API, Inspeckage will help you understand what an Android application is doing at runtime. Inspeckage will let you interact with some elements of the app, such as...