Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

50 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:55 a.m.2 views

CVE-2020-12731

The MagicMotion Flamingo 2 application for Android stores data on an sdcard under com.vt.magicmotion/files/Pictures, whence it can be read by other applications...

7.5CVSS7AI score0.00148EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-19147

Malware in sbrugna...

7.5CVSS7.6AI score0.00123EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-9778

Malware in sbrugna...

5.3CVSS5.6AI score0.00091EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-18562

Malicious code in bioql PyPI...

4CVSS6.6AI score0.00098EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.0 views

Linux Distros Unpatched Vulnerability : CVE-2016-2494

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Off-by-one error in sdcard/sdcard.c in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-06-01 allows attackers to gain...

9.3CVSS7.5AI score0.01072EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 7:49 a.m.5 views

CVE-2024-20847

Improper Access Control vulnerability in StorageManagerService prior to SMR Apr-2024 Release 1 allows local attackers to read sdcard information...

4CVSS6.5AI score0.00098EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:34 p.m.3 views

CVE-2020-26602

An issue was discovered in EthernetNetwork on Samsung mobile devices with O8.1, P9.0, Q10.0, and R11.0 software. PendingIntent allows sdcard access by an unprivileged process. The Samsung ID is SVE-2020-18392 October 2020...

7.5CVSS7AI score0.00123EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 10:31 a.m.5 views

CVE-2019-5279

Huawei smart phones Emily-L29C with Versions earlier than 9.1.0.311C10E2R1P13T8, Versions earlier than 9.1.0.311C461E2R1P11T8, Versions earlier than 9.1.0.316C635E2R1P11T8, Versions earlier than 9.1.0.311C185E2R1P12T8, Versions earlier than 9.1.0.311C605E2R1P12T8, Versions earlier than...

5.5CVSS6.6AI score0.0014EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 5:38 a.m.0 views

CVE-2017-18687

An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, M6.0, and N7.0 software. An attacker can obtain the full pathnames of sdcard files by reading the system protected log upon reception of a certain intent. The Samsung ID is SVE-2016-7183 January 2017...

5.3CVSS7AI score0.00091EPSS
Exploits0References1
NVD
NVDadded 2024/04/02 3:15 a.m.9 views

CVE-2024-20847

Improper Access Control vulnerability in StorageManagerService prior to SMR Apr-2024 Release 1 allows local attackers to read sdcard information...

4CVSS4AI score0.00098EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/04/02 2:59 a.m.14 views

CVE-2024-20847

Improper Access Control vulnerability in StorageManagerService prior to SMR Apr-2024 Release 1 allows local attackers to read sdcard information...

4CVSS4.5AI score0.00098EPSS
Exploits0References1
CVE
CVEadded 2024/04/02 2:59 a.m.53 views

CVE-2024-20847

The vulnerability CVE-2024-20847 affects StorageManagerService prior to SMR Apr-2024 Release 1. Root cause: Improper Access Control that allows local attackers to read SD card information. Affects Samsung Mobile devices' StorageManagerService implementation; remediation is to update to SMR Apr-20...

4CVSS6.4AI score0.00098EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/04/02 2:59 a.m.13 views

CVE-2024-20847

Improper Access Control vulnerability in StorageManagerService prior to SMR Apr-2024 Release 1 allows local attackers to read sdcard information...

4CVSS6.5AI score0.00098EPSS
Exploits0References1
Huntr
Huntradded 2023/08/13 5:48 a.m.26 views

Theft of Arbitrary Files due to execution of attacker scripts from BashAssociation.kt

Description Tested on Build87 of the Inure application. It was discovered that the application had an exported activity app.simple.inure.activities.association.BashAssociation which accepted intent data via the file scheme + text/x-shellscript mime type and executed the commands contained within...

1.9CVSS7.1AI score0.00118EPSS
Exploits1References1
NVD
NVDadded 2021/07/15 3:15 p.m.7 views

CVE-2020-12731

The MagicMotion Flamingo 2 application for Android stores data on an sdcard under com.vt.magicmotion/files/Pictures, whence it can be read by other applications...

7.5CVSS0.00148EPSS
Exploits0References1
OSV
OSVadded 2021/06/11 5:15 p.m.0 views

CVE-2021-0487

In onCreate of CalendarDebugActivity.java, there is a possible way to export calendar data to the sdcard without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for...

7.8CVSS5.9AI score0.00012EPSS
Exploits0References1
Prion
Prionadded 2021/06/11 5:15 p.m.12 views

Design/Logic Flaw

In onCreate of CalendarDebugActivity.java, there is a possible way to export calendar data to the sdcard without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for...

7.2CVSS7.6AI score0.00012EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2021/05/01 12:0 a.m.20 views

ASB-A-174046397

In onCreate of CalendarDebugActivity.java, there is a possible way to export calendar data to the sdcard without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00012EPSS
Exploits0References2
NVD
NVDadded 2020/10/06 7:15 p.m.14 views

CVE-2020-26602

An issue was discovered in EthernetNetwork on Samsung mobile devices with O8.1, P9.0, Q10.0, and R11.0 software. PendingIntent allows sdcard access by an unprivileged process. The Samsung ID is SVE-2020-18392 October 2020...

7.5CVSS0.00123EPSS
Exploits0References1
Prion
Prionadded 2020/10/06 7:15 p.m.11 views

Code injection

An issue was discovered in EthernetNetwork on Samsung mobile devices with O8.1, P9.0, Q10.0, and R11.0 software. PendingIntent allows sdcard access by an unprivileged process. The Samsung ID is SVE-2020-18392 October 2020...

5CVSS7.6AI score0.00123EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder