CVE-2025-55623

CVE-2025-55623 affects Reolink app version 4.54.0.4.20250526, targeting the lock screen component. The root cause is a bypass of authentication via Android Debug Bridge (ADB). Public sources (NVD/Red Hat) describe the vulnerability and its potential impact as authentication bypass with a CVSS v3....

Reolink App 安全漏洞

Reolink App is a mobile application from Reolink USA. A security vulnerability exists in Reolink App version v4.54.0.4.20250526, which stems from a flaw in the lock screen component that could lead to bypassing authentication via ADB...

CVE-2023-21438

Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder...

CVE-2025-23395

A flaw was found in Screen. When running with setuid-root privileged, the logfilereopen function does not drop privileges while operating on a user-supplied path. This vulnerability allows an unprivileged user to create files in arbitrary locations with root ownership. Mitigation No mitigation is...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scenario distributed operating system based on a microkernel.Huawei EMUI is a user interface developed by Huawei based on the Android operating system. A security bypass vulnerability exists in the Huawei...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome prior to version 116.0.5845.96, which stems from an improperly implemented full-screen implementation, and can be exploited by a remote attacker to spoof the contents of a multifunction box URL bar v...

DEBIAN-CVE-2023-2463

Inappropriate implementation in Full Screen Mode in Google Chrome on Android prior to 113.0.5672.63 allowed a remote attacker to hide the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

SUSE CVE-2015-6806

The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service stack consumption via an escape sequence with a large repeat count value...

screen: crash when processing combining chars

A flaw was found in screen. A specially crafted sequence of combining characters could cause an out of bounds write leading to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

Multiple vulnerabilities in EC-CUBE 2 series

Overview EC-CUBE 2 series provided by EC-CUBE CO.,LTD. contains multiple vulnerabilities listed below. Improper access control in Management screen CWE-284 - CVE-2021-20841 Cross-site request forgery vulnerability in Management screen CWE-352 - CVE-2021-20842 EC-CUBE CO.,LTD. reported these...

UBUNTU-CVE-2021-21176

Inappropriate implementation in full screen mode in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Apple macOS Mojave Unauthorized Access Vulnerability

Apple macOS Mojave is a specialized operating system developed by Apple for Mac computers. A security vulnerability exists in Apple macOS Mojave versions prior to 10.14.4, which stems from a lock screen issue that allows access to contacts on a locked device, and can be exploited by an attacker t...

Siemens SICAM A8000 RTU Cross-Site Scripting Vulnerability

The SICAM A8000 RTU Remote Terminal Unit series is a modular family of devices for remote control and automation applications in all areas of energy supply. A cross-site scripting vulnerability exists in the Siemens SICAM A8000 RTU. The vulnerability is caused due to the login screen failing to...

CVE-2019-6744

This vulnerability allows local attackers to disclose sensitive information on affected installations of Samsung Knox 1.2.02.39 on Samsung Galaxy S9 build G9600ZHS3ARL1 Secure Folder. An attacker must first obtain physical access to the device in order to exploit this vulnerability. The specific...

Code injection

A lock screen issue allowed access to the share function on a locked device. This issue was addressed by restricting options offered on a locked device. This issue affected versions prior to iOS 12.1...

CVE-2018-4388

A lock screen issue allowed access to the share function on a locked device. This issue was addressed by restricting options offered on a locked device. This issue affected versions prior to iOS 12.1...

The vulnerability of the iOS operating system, which allows a perpetrator to gain access to protected information

The vulnerability of the iOS operating system is related to errors in restricting access to information on the lock screen. Exploiting this vulnerability can allow a local attacker to gain access to protected information...