54 matches found
PT-2024-26016 · Samsung · Galaxy Store
Name of the Vulnerable Software and Affected Versions: GalaxyStore versions prior to 4.5.81.0 Description: The issue is related to improper verification of intent by a broadcast receiver in GalaxyStore, allowing local attackers to launch unexported activities of GalaxyStore. Recommendations: For...
CVE-2024-20870
Improper verification of intent by broadcast receiver vulnerability in Galaxy Store prior to version 4.5.71.8 allows local attackers to write arbitrary files with the privilege of Galaxy Store...
CVE-2024-20853
Improper verification of intent by broadcast receiver vulnerability in ThemeStore prior to 5.3.05.2 allows local attackers to write arbitrary files to sandbox of ThemeStore...
CVE-2024-20853
Improper verification of intent by broadcast receiver vulnerability in ThemeStore prior to 5.3.05.2 allows local attackers to write arbitrary files to sandbox of ThemeStore...
CVE-2024-20852
CVE-2024-20852 affects Samsung SmartThings prior to version 1.8.13.22, due to improper verification of intent by a broadcast receiver. Local attackers could access testing configuration. Remediation: upgrade to version 1.8.13.22 or later. No exploitation details are provided in the supplied docum...
CVE-2024-20852
Improper verification of intent by broadcast receiver vulnerability in SmartThings prior to version 1.8.13.22 allows local attackers to access testing configuration...
PT-2024-18762 · Samsung · Smartthings
Name of the Vulnerable Software and Affected Versions: SmartThings versions prior to 1.8.13.22 Description: The issue is related to improper verification of intent by a broadcast receiver, allowing local attackers to access testing configuration. Recommendations: For versions prior to 1.8.13.22,...
CVE-2023-42543
Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege...
CVE-2023-42543
Improper verification of intent by broadcast receiver vulnerability in Bixby Voice prior to version 3.3.35.12 allows attackers to access arbitrary data with Bixby Voice privilege...
SA-CONTRIB-2014-060- Petitions - Cross Site Request Forgery (CSRF)
This distribution enables you to build an application that lets users create and sign petitions. The contained whpetitions module doesn't sufficiently verify the intent of the user when signing a petition. A malicious user could trick another user into signing a petition they did not intend to si...
LOP.COM Detection
The remote host is using the LOP.COM program. You should ensure that: - the user intended to install LOP.COM it is sometimes silently installed - the use of LOP.COM matches your corporate mandates and security policies. To remove this sort of software, install software such as Ad-Aware or Spybot....
IPINSIGHT Detection
The remote host is using the IPINSIGHT program. You should ensure that the user intended to install IPINSIGHT as it is sometimes silently installed. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid12015; scriptversion"1.16";...
TIMESINK Spyware Detection
The remote host is using the TIMESINK program. You should ensure that : - the user intended to install TIMESINK it is sometimes silently installed - the use of TIMESINK matches your corporate mandates and security policies. To remove this sort of software, you may wish to check out Ad-Aware or...
SaveNOW Detection
The remote host is using the SaveNOW program. You should ensure that: - the user intended to install SaveNOW it is sometimes silently installed - the use of SaveNOW matches your corporate mandates and security policies. To remove this sort of software, you may wish to check out ad-aware or spybot...