Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-25518

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00083EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/06 8:15 p.m.15 views

CVE-2025-32322

In onCreate of MediaProjectionPermissionActivity.java , there is a possible way to grant a malicious app a token enabling unauthorized screen recording capabilities due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

7.8CVSS6.8AI score0.00078EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 8:15 p.m.3 views

CVE-2025-32322

In onCreate of MediaProjectionPermissionActivity.java , there is a possible way to grant a malicious app a token enabling unauthorized screen recording capabilities due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

7.8CVSS5.9AI score0.00078EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/04 7:39 p.m.8 views

CVE-2025-32322

In onCreate of MediaProjectionPermissionActivity.java , there is a possible way to grant a malicious app a token enabling unauthorized screen recording capabilities due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed...

0.00078EPSS
Exploits0References1
CVE
CVE
added 2025/09/04 7:39 p.m.33 views

CVE-2025-32322

CVE-2025-32322 concerns a vulnerability in the Wear OS/Android platform involving onCreate in a media projection flow (MediaProjectionPermissionActivity.java). The issue arises from improper input validation that could allow a malicious app to obtain a token enabling unauthorized screen recording...

7.8CVSS6.3AI score0.00078EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/04 12:0 a.m.7 views

PT-2025-36091

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: A flaw exists in MediaProjectionPermissionActivity.java that may allow a malicious application to obtain a token enabling unauthorized screen recording. This could lead to local escalation ...

7.8CVSS6.1AI score0.00078EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:6 a.m.3 views

CVE-2023-21350

In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.5AI score0.00083EPSS
Exploits0References1
OSV
OSV
added 2025/02/01 12:0 a.m.23 views

ASB-A-372670004

In onCreate of MediaProjectionPermissionActivity.java, there is a possible way to bypass user consent due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.4AI score
Exploits0References2
OSV
OSV
added 2023/10/30 5:15 p.m.3 views

CVE-2023-21350

In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.9AI score0.00083EPSS
Exploits0References1
NVD
NVD
added 2023/10/30 5:15 p.m.22 views

CVE-2023-21350

In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.1AI score0.00083EPSS
Exploits0References1
Prion
Prion
added 2023/10/30 5:15 p.m.12 views

Information disclosure

In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

1.7CVSS5.6AI score0.00083EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/30 4:56 p.m.17 views

CVE-2023-21350

In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

6.1AI score0.00083EPSS
Exploits0References1
CVE
CVE
added 2023/10/30 4:56 p.m.52 views

CVE-2023-21350

CVE-2023-21350 affects Android's Media Projection component. An attacker can infer whether a target app is installed via a side-channel disclosure, without query permissions, enabling local information leakage with no user interaction. Impact is limited to confidentiality (high) per sources; atta...

5.5CVSS5.6AI score0.00083EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/30 12:0 a.m.4 views

PT-2023-18126 · Google · Media Projection

Name of the Vulnerable Software and Affected Versions: Media Projection affected versions not specified Description: In Media Projection, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to loc...

5.5CVSS5AI score0.00083EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2015/10/21 12:0 a.m.5 views

The vulnerability of the Android operating system allows a hacker to bypass the user’s warning when a screenshot is taken and gain access to the protected information.

The vulnerability of the Media Projection component in the Android operating system is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a malicious actor to bypass user notifications about screen capture and gain access to protected information...

4.3CVSS5.5AI score0.01074EPSS
Exploits0References2
CNVD
CNVD
added 2015/10/08 12:0 a.m.4 views

Android Information Leakage Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Media Projection is a media projection component. A security vulnerability exists in the Media Projection component of Android. The vulnerability can be exploited by an...

4.3CVSS6.5AI score0.01074EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/10/06 5:0 p.m.22 views

CVE-2015-3878

Media Projection in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to bypass an intended screen-recording warning feature and obtain sensitive screen-snapshot information via a crafted application that references a long application name, aka internal bug 23345192...

6AI score0.01074EPSS
Exploits0References1
CVE
CVE
added 2015/10/06 5:0 p.m.46 views

CVE-2015-3878

The CVE-2015-3878 issue affects the Media Projection component in Android 5.x (before 5.1.1 LMY48T) and Android 6.0 (before the 2015-10-01 patch). A vulnerability arises when an application uses an excessively long name, which can bypass the screen-recording warning and allow a local attacker to ...

4.3CVSS6.1AI score0.01074EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder