149 matches found
CVE-2020-13626
OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked...
CVE-2023-26309
A remote code execution vulnerability in the webview component of OnePlus Store app...
CVE-2023-26309
A remote code execution vulnerability in the webview component of OnePlus Store app...
Remote code execution
A remote code execution vulnerability in the webview component of OnePlus Store app...
CVE-2023-26309
CVE-2023-26309 describes a remote code execution in the webview component of the OnePlus Store app. Affected: OnePlus Store app webview. Vulnerability type and root cause are not detailed beyond generic RCE in webview; impact is high (C/H/I/A: HIGH per NVD; CVSS v3.1 scores show 9.8 base in NVD w...
CVE-2023-26309 A remote code execution vulnerability in the webview component
A remote code execution vulnerability in the webview component of OnePlus Store app...
CVE-2023-26309 A remote code execution vulnerability in the webview component
A remote code execution vulnerability in the webview component of OnePlus Store app...
OPPO OnePlus Mall Security Breach
OPPO OnePlus Mall is a mobile application from OPPO Guangdong Mobile Communications OPPO, China. A security vulnerability exists in OPPO OnePlus Mall version 3.0.2023, which stems from a remote code execution RCE vulnerability in the webview component...
OnePlus8T has an information leak vulnerability
The OnePlus 8T is a smartphone. OnePlus8T has an information disclosure vulnerability. An attacker can exploit to obtain sensitive user information...
CVE-2020-13626
OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked...
CVE-2020-13626
OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked...
Authorization
OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked...
CVE-2020-13626
The CVE-2020-13626 entry concerns OnePlus App Locker (up to 2020-10-06). The vulnerability allows physically proximate attackers to exploit Google Assistant to bypass an authorization check and send an SMS while the SMS app is locked. CVSS data provided: CVSS v3.1: AV=Physical, AC=Low, PR=None, U...
CVE-2020-13626
OnePlus App Locker through 2020-10-06 allows physically proximate attackers to use Google Assistant to bypass an authorization check in order to send an SMS message when the SMS application is locked...
OnePlus 7 Pro Information Disclosure Vulnerability
The OnePlus 7 Pro is a smartphone from China's Wampus Technology OnePlus. A security vulnerability exists in versions prior to OnePlus 7 Pro 10.0.3.GM21BA. The vulnerability can be exploited by an attacker to obtain a fingerprint image bitmap from the fingerprint sensor...
CVE-2020-7958
An issue was discovered on OnePlus 7 Pro devices before 10.0.3.GM21BA. The firmware was found to contain functionality that allows a privileged user root in the Rich Execution Environment REE to obtain bitmap images from the fingerprint sensor because of Leftover Debug Code. The issue is that the...
CVE-2020-7958
An issue was discovered on OnePlus 7 Pro devices before 10.0.3.GM21BA. The firmware was found to contain functionality that allows a privileged user root in the Rich Execution Environment REE to obtain bitmap images from the fingerprint sensor because of Leftover Debug Code. The issue is that the...
Design/Logic Flaw
An issue was discovered on OnePlus 7 Pro devices before 10.0.3.GM21BA. The firmware was found to contain functionality that allows a privileged user root in the Rich Execution Environment REE to obtain bitmap images from the fingerprint sensor because of Leftover Debug Code. The issue is that the...
CVE-2020-7958
An issue was discovered on OnePlus 7 Pro devices before 10.0.3.GM21BA. The firmware was found to contain functionality that allows a privileged user root in the Rich Execution Environment REE to obtain bitmap images from the fingerprint sensor because of Leftover Debug Code. The issue is that the...
CVE-2020-7958
The CVE-2020-7958 entry concerns OnePlus 7 Pro devices (prior to 10.0.3.GM21BA). A leftover-debug-code issue in the firmware allows a privileged root user in the Rich Execution Environment (REE) to obtain bitmap fingerprint images from the sensor. The root cause is that the Trusted Application (T...