Lucene search
K

10 matches found

NVD
NVD
added 2026/06/17 1:19 p.m.20 views

CVE-2026-0068

In createSessionInternal of PackageInstallerService.java, there is a possible method to remove a DPC app from a managed device without DO consent due to desync from persistence. This could lead to local escalation of privilege if a user can install a malicious app with no additional execution...

10CVSS0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.9 views

PT-2025-46307

Name of the Vulnerable Software and Affected Versions Axis Communications ACAP applications affected versions not specified Description ACAP applications may be able to gain elevated privileges due to improper input validation, which could lead to privilege escalation. This is only possible if th...

6.7CVSS5.3AI score0.00122EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17137

Malware in sbrugna...

7.1CVSS5.5AI score0.0055EPSS
Exploits0References2
Securelist
Securelist
added 2025/01/30 8:0 a.m.22 views

No need to RSVP: a closer look at the Tria stealer campaign

Introduction Since mid-2024, we've observed a malicious Android campaign leveraging wedding invitations as a lure to social-engineer victims into installing a malicious Android app APK, which we have named "Tria Stealer" after unique strings found in campaign samples. The primary targets of the...

7.1AI score
Exploits0
NCSC
NCSC
added 2024/03/06 12:0 a.m.6 views

Vulnerabilities fixed in Apple iOS and iPadOS

Apple has fixed vulnerabilities in iOS and iPadOS. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Manipulation of data; Circumvention of security measure; Accessing sensitive data. For successful exploitatio...

7.8CVSS8.3AI score0.01481EPSS
Exploits0
OSV
OSV
added 2021/08/03 8:15 p.m.2 views

DEBIAN-CVE-2021-30580

Insufficient policy enforcement in Android intents in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious application to obtain potentially sensitive information via a crafted HTML page...

6.5CVSS6.2AI score0.01341EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/06/04 6:15 p.m.28 views

CVE-2021-30519

Use after free in Payments in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to install a malicious payments app to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.00916EPSS
Exploits1References1
OSV
OSV
added 2019/08/08 5:15 p.m.2 views

CVE-2019-5301

Huawei smart phones Honor V20 with the versions before 9.0.1.161C00E161R2P2 have an information leak vulnerability. An attacker may trick a user into installing a malicious application. Due to coding error during layer information processing, attackers can exploit this vulnerability to obtain som...

3.3CVSS5.8AI score0.00537EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/26 12:0 a.m.3 views

Huawei ALP-AL00B and BLA-AL00B RCS Module Unauthorized Operation Vulnerability

Huawei ALP-AL00B and BLA-AL00B are both smartphone products from Huawei, China.RCS module is one of the converged communication modules. A security vulnerability exists in the RCS module in the Huawei ALP-AL00B before version 8.0.0.129 and the BLA-AL00B before version 8.0.0.129. An attacker can...

5.8CVSS6.7AI score0.00469EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2017/03/21 10:38 a.m.364 views

Searching for Leaked Celebrity Photos? Don't Blindly Click that Fappening Link!

Are you curiously googling or searching torrents for photos or videos of Emma Watson, Amanda Seyfried, Rose McGowan, or any other celebrities leaked in The Fappenning 2.0? If yes, then beware, you should not click any link promising Fappenning celebrity photos. Cybercriminals often take advantage...

6.5AI score
Exploits0
Rows per page
Query Builder