Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29640

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00302EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/18 1:39 a.m.13 views

CVE-2025-56557

An issue discovered in the Tuya Smart Life App 5.6.1 allows attackers to unprivileged control Matter devices via the Matter protocol...

9.1CVSS7AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2025/09/16 12:0 a.m.33 views

CVE-2025-56557

CVE-2025-56557 describes a vulnerability in Tuya Smart Life App version 5.6.1 that allows an attacker to unprivilegedly control Matter devices using the Matter protocol. The NVD entry lists a CVSS v3.1 base score of 9.1 (CRITICAL) with network attack vector, no user interaction required, and impa...

9.1CVSS6.6AI score0.00302EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.13 views

Tuya Smart Life App 安全漏洞

Tuya Smart Life App is a smart home control app from Chinese company Tuya Tuya. A security vulnerability exists in Tuya Smart Life App version 5.6.1, which originates from an attacker being able to control the device without privileges via the Matter protocol...

9.1CVSS6.7AI score0.00302EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/11/08 12:0 a.m.13 views

CVE-2024-40239

An incorrect access control issue in Life: Personal Diary, Journal android app 17.5.0 allows a physically proximate attacker to escalate privileges via the fingerprint authentication function...

0.00254EPSS
Exploits0References2
OSV
OSV
added 2023/09/11 8:15 a.m.4 views

CVE-2023-42470

The Imou Life com.mm.android.smartlifeiot application through 6.8.0 for Android allows Remote Code Execution via a crafted intent to an exported component. This relates to the com.mm.android.easy4ip.MainActivity activity. JavaScript execution is enabled in the WebView, and direct web content...

9.8CVSS6.1AI score0.01986EPSS
Exploits1References3
CVE
CVE
added 2021/06/09 1:5 a.m.56 views

CVE-2021-20732

CVE-2021-20732 concerns the ATOM - Smart life App (Android v1. unaffected; affected are Android versions prior to 1.8.1 and iOS prior to 1.8.2) lacking proper server certificate verification (CWE-295). The issue enables a man-in-the-middle attacker to eavesdrop on encrypted traffic through a craf...

5.9CVSS5.2AI score0.00486EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/06/03 5:5 a.m.4 views

ATOM - Smart life App vulnerable to improper server certificate verification

Overview ATOM - Smart life App provided by ATOM tech Inc. is vulnerable to improper server certificate verification CWE-295. Yuji Tounai of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

5.9CVSS6.6AI score0.00486EPSS
Exploits0References5
CNVD
CNVD
added 2020/10/22 12:0 a.m.1 views

Shenzhen Chuangshi Interconnection Technology Co., Ltd. local same-city comprehensive life service app has logic flaws and vulnerabilities

Local Same City Comprehensive Life Service App is a is a small and medium-sized cities and counties exclusive life comprehensive service APP platform, specially made for small and medium-sized cities and counties. There is a logic flaw vulnerability in Shenzhen Chuangshi Interconnection Technolog...

6.5AI score
Exploits0
CNVD
CNVD
added 2019/03/27 12:0 a.m.0 views

Arbitrary Password Reset Vulnerability in Companion Life App

The Companion Life App is an app for opening neighborhood gates. An arbitrary password reset vulnerability exists in Companion Life APP, which can be exploited by an attacker to reset any password...

7.1AI score
Exploits0
CNVD
CNVD
added 2018/05/29 12:0 a.m.2 views

Kangaroo Life App has a Bursting Vulnerability

Kangaroo Life App is a mobile lending software. Kangaroo Life APP has a blasting vulnerability. Attackers can log in to any account by grabbing packets and blasting CAPTCHA...

6.9AI score
Exploits0
hackapp
hackapp
added 2017/01/20 2:47 p.m.20 views

Rogue Life - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Rogue Life published at the 'play' market has multiple vulnerabilities...

1AI score
Exploits0References1Affected Software1
Rows per page
Query Builder