Motorola Phone Calls 安全漏洞

Motorola Phone Calls is a cell phone application from Motorola USA. A security vulnerability exists in the Motorola Phone Calls Application, which stems from an implicit intent vulnerability that could allow a local attacker to read the calling phone number and call data...

Motorola Time Weather Widget 安全漏洞

Motorola Time Weather Widget is a mobile weather forecasting application from Motorola, Inc. A security vulnerability exists in Motorola Time Weather Widget, which stems from an implicit intent vulnerability that could allow a local application to gain unauthorized access to the device's location...

Motorola Framework 安全漏洞

Motorola Framework is a framework from Motorola USA. A security vulnerability exists in Motorola Framework that stems from the presence of an implicit intent vulnerability that could allow an attacker to read data related to a phone call...

PT-2024-12988 · Motorola · Motorola Phone Calls

Name of the Vulnerable Software and Affected Versions: Motorola Phone Calls affected versions not specified Description: An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling phone number and calling data...

PT-2024-23751 · Motorola · Motorola Time Weather Widget

Name of the Vulnerable Software and Affected Versions: Motorola Time Weather Widget affected versions not specified Description: An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to acquire the location of the device...

Motorola Phone 安全漏洞

Motorola Phone is an application from Motorola USA. A security vulnerability exists in Motorola Phone that stems from an implicit intent to export vulnerability that could allow unauthorized access to non-exporting content providers...

PT-2024-26195 · Motorola · Motorola Framework

Name of the Vulnerable Software and Affected Versions: Motorola framework affected versions not specified Description: An Implicit intent issue was reported in the Motorola framework, potentially allowing an attacker to read telephony-related data. Recommendations: At the moment, there is no...

Jenkins Script Security Plugin has sandbox bypass vulnerability involving crafted constructor bodies

Jenkins Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call ...

GHSA-V63G-V339-2673 Jenkins Script Security Plugin has sandbox bypass vulnerability involving crafted constructor bodies

Jenkins Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call ...

httpd: Apache Tomcat Connectors (mod_jk) Information Disclosure

A vulnerability was found in Apache Tomcat Connectors modjk. Affected versions of this package are vulnerable to information exposure in the modjk component. This flaw allows an attacker to exploit the implicit mapping functionality, resulting in the unintended exposure of the status worker and...

CVE-2024-20850

Use of Implicit Intent for Sensitive Communication in Samsung Pay prior to version 5.4.99 allows local attackers to access information of Samsung Pay...

CVE-2024-20850

Use of Implicit Intent for Sensitive Communication in Samsung Pay prior to version 5.4.99 allows local attackers to access information of Samsung Pay...

CVE-2024-20850

The CVE-2024-20850 entry concerns Samsung Pay on Samsung devices, where an implicit Intent for sensitive communication is used. This design flaw allows local attackers to access Samsung Pay information. Affected versions are prior to 5.4.99. The vulnerability’s impact is confined to confidentiali...

CVE-2024-20850

Use of Implicit Intent for Sensitive Communication in Samsung Pay prior to version 5.4.99 allows local attackers to access information of Samsung Pay...

CVE-2024-20850

Use of Implicit Intent for Sensitive Communication in Samsung Pay prior to version 5.4.99 allows local attackers to access information of Samsung Pay...

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices, which arises from the use of implicit intent for sensitive communications. The following...

PT-2024-18760 · Samsung · Samsung Pay

Name of the Vulnerable Software and Affected Versions: Samsung Pay versions prior to 5.4.99 Description: The issue concerns the use of implicit intent for sensitive communication in Samsung Pay, allowing local attackers to access Samsung Pay information. Recommendations: For versions prior to...

CVE-2024-23727

The YI Smart Kami Vision com.kamivision.yismart application through 1.0.020231219 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component...

CVE-2024-23727

The YI Smart Kami Vision com.kamivision.yismart application through 1.0.020231219 for Android allows a remote attacker to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component...

CVE-2024-23727

CVE-2024-23727 affects the YI Smart Kami Vision (com.kamivision.yismart) Android app via version 1.0.0_20231219. The vulnerability stems from allow­ing an implicit Android intent to WebViewActivity to execute arbitrary JavaScript code, enabling a remote attacker to run JS on the device with no us...