EUVD-2024-54616

Malicious code in bioql PyPI...

CVE-2024-13917 Intent Injection in Kruger&Matz AppLock application

An application "com.pri.applock", which is pre-loaded on Kruger&Matz smartphones, allows a user to encrypt any application using user-provided PIN code or by using biometric data. Exposed ”com.pri.applock.LockUI“ activity allows any other malicious application, with no granted Android system...

CVE-2024-13917 Intent Injection in Kruger&Matz AppLock application

An application "com.pri.applock", which is pre-loaded on Kruger&Matz smartphones, allows a user to encrypt any application using user-provided PIN code or by using biometric data. Exposed ”com.pri.applock.LockUI“ activity allows any other malicious application, with no granted Android system...

CVE-2024-13917

CVE-2024-13917 describes a vulnerability in the pre-installed Krüger&Matz/ Ulefone app “com.pri.applock” where the exposed activity LockUI can be abused by any malicious app (no system permissions) to inject an arbitrary intent with system-level privileges into a protected app. The exploit requir...

PT-2025-23312 · Unknown · Com.Pri.Applock

Name of the Vulnerable Software and Affected Versions: com.pri.applock version 13 version code: 33 Description: The issue allows a malicious application to inject an arbitrary intent with system-level privileges to a protected application. This can be done by exploiting the exposed...

Krüger&Matz com.pri.applock 安全漏洞

Krüger&Matz com.pri.applock is a mobile application component from Krüger&Matz. A security vulnerability exists in Krüger&Matz com.pri.applock, which stems from a LockUI activity that allows arbitrary intent injection, potentially resulting in a system-level elevation of privilege...

ASB-A-246300272

In getTrampolineIntent of SettingsActivity.java, there is a possible launch of arbitrary activity due to an Intent mismatch in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...