PT-2021-23083 · Wire · Wire

Name of the Vulnerable Software and Affected Versions: Wire versions prior to 3.70 Description: The issue allows users to bypass the mandatory encryption at rest feature by disabling their device passcode. When the app launches, it attempts to enable encryption at rest by generating encryption ke...

EFB Safety Advice for Pilots

As a pilot you will be all too aware of how important an electronic flight bag EFB is to you and your role. It’s probably critical to your takeoff performance calculations, your roster, pax lists and plenty more. It’s one thing if its not working, but have you ever stopped to consider what could...

CVE-2021-27204

Telegram before 7.4 212543 Stable on macOS stores the local passcode in cleartext, leading to information disclosure...

CVE-2021-27204

Telegram before 7.4 212543 Stable on macOS stores the local passcode in cleartext, leading to information disclosure...

Information disclosure

Telegram before 7.4 212543 Stable on macOS stores the local passcode in cleartext, leading to information disclosure...

CVE-2021-27204

Telegram before 7.4 212543 Stable on macOS stores the local passcode in cleartext, leading to information disclosure...

LogMein LastPass Password Manager Authorization Issues Vulnerability

Logmein LogMeIn LastPass is a cross-platform online password management tool from US-based Logmein. LogMein LastPass Password Manager suffers from an authorization issue vulnerability that originates from forcing the authentication result to be true via a runtime operation, which can bypass the P...

CVE-2020-25824

Telegram Desktop through 2.4.3 does not require passcode entry upon pushing the Export key within the Export Telegram Data wizard. The threat model is a victim who has voluntarily opened Export Wizard but is then distracted. An attacker then approaches the unattended desktop and pushes the Export...

Code injection

Telegram Desktop through 2.4.3 does not require passcode entry upon pushing the Export key within the Export Telegram Data wizard. The threat model is a victim who has voluntarily opened Export Wizard but is then distracted. An attacker then approaches the unattended desktop and pushes the Export...

CVE-2020-25824

Telegram Desktop up to version 2.4.3 is vulnerable: when a user opens the Export Telegram Data wizard, pressing the Export key on an unattended, distracted desktop allows an attacker to access all chat conversations and media files because no passcode is required. Affected product: Telegram Deskt...

CVE-2020-25824

Telegram Desktop through 2.4.3 does not require passcode entry upon pushing the Export key within the Export Telegram Data wizard. The threat model is a victim who has voluntarily opened Export Wizard but is then distracted. An attacker then approaches the unattended desktop and pushes the Export...

Lockphish - The First Tool For Phishing Attacks On The Lock Screen, Designed To Grab Windows Credentials, Android PIN And iPhone Passcode

Lockphish it's the first tool 07/04/2020 for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link. LockPhish Tutorial:https://www.kalilinux.in/2020/05/lockphish.html Author: The Linux Choice Who deleted his GitHub repository...

iOS 12 / 13 / 14 Passcode Bypass 0day Exploit

Attacker can access device SpringBoard, run default iOS apps, run 3rd party iOS apps installed from AppStore, open Photos, Reminders, Notes, Email, and all other iOS apps, make and receive calls / sms, etc. What you receive: The source code of exploit written in TheOS tweak platform...

Zoom web client flaw could’ve let hackers crack meetings passcode

By Deeba Ahmed The vulnerability, if exploited, would have affected millions of Zoom users worldwide. This is a post from HackRead.com Read the original post: Zoom web client flaw could've let hackers crack meetings passcode...

How to Passcode-Lock Any App on Your Phone

Letting someone see your phone shouldn't also mean letting them snoop on your texts, photos, or emails. Here's how to stop it from happening...

CVE-2020-10570

The Telegram application through 5.12 for Android, when Show Popup is enabled, might allow physically proximate attackers to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature...

CVE-2020-10570

The Telegram application through 5.12 for Android, when Show Popup is enabled, might allow physically proximate attackers to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature...

Design/Logic Flaw

The Telegram application through 5.12 for Android, when Show Popup is enabled, might allow physically proximate attackers to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature...

Microsoft OneDrive for Android Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Microsoft OneDrive App for Android. This could allow an attacker to bypass the passcode or fingerprint requirements of the App. The security update addresses the vulnerability by correcting the way Microsoft OneDrive App for Android handles sharin...

no.vlip.lv Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1063927 Security Researcher passc0de Helped patch 22 vulnerabilities Received 1 Coordinated Disclosure badges , a holder of 1 badges for responsible and coordinated disclosure, found a security vulnerability affecting no.vlip.lv website and its users. Following coordinated...