Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk

In this article 1. Technical details 2. Disclosure timeline 3. Mitigation and protection guidance 4. References 5. Learn more During routine security research, we identified a severe intent redirection vulnerability in a widely used third-party Android SDK called EngageSDK. This flaw allows apps ...

EUVD-2023-46988

Malicious code in bioql PyPI...

EUVD-2024-32066

Malicious code in bioql PyPI...

EUVD-2023-46979

Malicious code in bioql PyPI...

EUVD-2024-31711

Malicious code in bioql PyPI...

EUVD-2023-46316

Malicious code in bioql PyPI...

EUVD-2022-39571

Malicious code in bioql PyPI...

EUVD-2023-46978

Malicious code in bioql PyPI...

EUVD-2023-46312

Malicious code in bioql PyPI...

CVE-2024-3480

An Implicit intent vulnerability was reported in the Motorola framework that could allow an attacker to read telephony-related data...

CVE-2024-3108

An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to acquire the location of the device without authorization...

CVE-2023-42550

Use of implicit intent for sensitive communication vulnerability in startSignIn in Samsung Account prior to version 14.5.00.7 allows attackers to access arbitrary file with Samsung Account privilege...

CVE-2023-41820

An implicit intent vulnerability was reported in the Motorola Ready For application that could allow a local attacker to read information about connected Bluetooth audio devices...

CVE-2022-30729

Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner...

CVE-2024-3108

An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to acquire the location of the device without authorization...

CVE-2023-41824

An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling phone number and calling data...

CVE-2023-41824

An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling phone number and calling data...

CVE-2023-41824

An implicit intent vulnerability was reported in the Motorola Phone Calls application that could allow a local attacker to read the calling phone number and calling data...

CVE-2023-41824

Technical details about CVE-2023-41824 are not publicly provided in the connected documents. The materials reiterate an implicit intent vulnerability in Motorola Phone Calls to read calling data but lack specifics on affected versions, root cause, or remediation. Monitor for updates.

Motorola Phone Calls 安全漏洞

Motorola Phone Calls is a cell phone application from Motorola USA. A security vulnerability exists in the Motorola Phone Calls Application, which stems from an implicit intent vulnerability that could allow a local attacker to read the calling phone number and call data...