CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/17 9:31 a.m.•1 views

EUVD-2026-23388

NVD•added 2026/04/17 8:16 a.m.•0 views

CVE-2026-40002

5CVSS0.00005EPSS

Vulnrichment•added 2026/04/17 7:40 a.m.•0 views

CVE-2026-40002 ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations.

CVE•added 2026/04/17 7:40 a.m.•5 views

CVE-2026-40002

CVE-2026-40002 affects ZTE Red Magic 11 Pro (NX809J). The issue arises from lack of validation when apps access a service interface, allowing non-privileged apps to trigger sensitive operations. Exploitation could enable writing files to specific partitions and altering writable system properties...

ATTACKERKB•added 2026/04/17 7:40 a.m.•1 views

CVE-2026-40002

Positive Technologies•added 2026/04/17 12:0 a.m.•2 views

PT-2026-33421

RedhatCVE•added 2026/02/13 1:30 a.m.•3 views

CVE-2026-20603

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Tahoe 26.3. An app with root privileges may be able to access private information...

4.4CVSS5.4AI score0.00019EPSS

OSV•added 2025/07/30 12:15 a.m.•0 views

CVE-2025-43260

This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. An app may be able to hijack entitlements granted to other privileged apps...

5.1CVSS5.7AI score

Exploits0References4

OSV•added 2024/09/04 6:15 a.m.•1 views

CVE-2024-34645

Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications...

4.6CVSS5.8AI score0.00092EPSS

Positive Technologies•added 2024/09/03 12:0 a.m.•2 views

PT-2024-26064 · Unknown · Themecenter

Name of the Vulnerable Software and Affected Versions: ThemeCenter versions prior to SMR Sep-2024 Release 1 Description: The issue is related to improper input validation in ThemeCenter, which allows physical attackers to install privileged applications. Recommendations: For versions prior to SMR...

6.1CVSS6.8AI score0.00092EPSS

Exploits0References5

ATTACKERKB•added 2023/06/16 7:15 p.m.•1 views

CVE-2023-25645

There is a permission and access control vulnerability in some ZTE AndroidTV STBs. Due to improper permission settings, non-privileged application can perform functions that are protected with signature/privilege-level permissions. Exploitation of this vulnerability could clear personal data and...

7.7CVSS5.9AI score0.00039EPSS

Prion•added 2023/06/16 7:15 p.m.•16 views

Design/Logic Flaw

3.6CVSS7.4AI score0.00039EPSS

Exploits0References1Affected Software5

Positive Technologies•added 2023/06/16 12:0 a.m.•3 views

PT-2023-20206 · Zte · Zte Androidtv Stbs

Name of the Vulnerable Software and Affected Versions: ZTE AndroidTV STBs affected versions not specified Description: The issue is related to improper permission settings, allowing non-privileged applications to perform protected functions. This could lead to the clearance of personal data and...

7.7CVSS6.4AI score0.00039EPSS

Exploits0References3

CNNVD•added 2022/06/07 12:0 a.m.•1 views

Samsung Account 安全漏洞

Samsung Account is a mobile account feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in Samsung Account. The vulnerability stems from hijacking of non-privileged applications and can be exploited by attackers to bypass user confirmation of Samsung Accou...

9.8CVSS5.6AI score0.00059EPSS

OSV•added 2021/07/14 2:15 p.m.•1 views

CVE-2021-0590

In sendNetworkConditionsBroadcast of NetworkMonitor.java, there is a possible way for a privileged app to receive WiFi BSSID and SSID without location permissions due to a missing permission check. This could lead to local information disclosure with System execution privileges needed. User...

4.4CVSS5.9AI score

CNVD•added 2017/05/23 12:0 a.m.•2 views

Apple macOS Sierra iBooks Elevation of Privilege Vulnerability

Apple macOS is an operating system that runs on Apple's Macintosh line of computers. An elevation of privilege vulnerability exists in the handling of symbolic links in Apple macOS Sierra iBooks, which can be exploited by remote attackers to build malicious applications with elevated privileges...

9.3CVSS7AI score0.00251EPSS

CNVD•added 2017/04/10 12:0 a.m.•2 views

Google Android Broadcom Wi-Fi driver elevation of privilege vulnerability (CNVD-2017-04966)

Google Android is a mobile operating system based on the Linux open kernel. Google Android has a security vulnerability in the Broadcom Wi-Fi driver implementation that allows remote attackers to exploit the vulnerability to submit special applications with elevated privileges...

7.6CVSS6.7AI score0.0271EPSS

Exploits2References1

CNVD•added 2017/04/10 12:0 a.m.•2 views

Google Android Qualcomm CP access driver elevation of privilege vulnerability

Google Android is a mobile operating system based on the Linux open kernel. Google Android has a security vulnerability in the Qualcomm CP access driver implementation that allows remote attackers to exploit the vulnerability to submit special applications with elevated privileges...

7.6CVSS6.7AI score0.00237EPSS