Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:10 a.m.2 views

CVE-2023-21398

In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.9AI score0.00116EPSS
Exploits0References1
OSV
OSV
added 2023/10/30 6:15 p.m.4 views

CVE-2023-21398

In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00116EPSS
Exploits0References1
Prion
Prion
added 2023/10/30 6:15 p.m.15 views

Code injection

In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS8.2AI score0.00116EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/30 5:1 p.m.15 views

CVE-2023-21398

In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.3AI score0.00116EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/30 5:1 p.m.21 views

CVE-2023-21398

In sdksandbox, there is a possible strandhogg style overlay attack due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.5AI score0.00116EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/30 12:0 a.m.3 views

PT-2023-18173 · Unknown · Sdksandbox

Name of the Vulnerable Software and Affected Versions: sdksandbox affected versions not specified Description: The issue is related to a logic error in the code of sdksandbox, which could lead to a Strandhogg style overlay attack. This attack may result in local escalation of privilege without...

7.8CVSS7.5AI score0.00116EPSS
Exploits0References3
Hacker One
Hacker One
added 2021/08/31 11:32 a.m.14 views

Reddit: com.reddit.frontpage vulernable to Task Hijacking (aka StrandHogg Attack)

Summary: The app com.reddit.frontpage is vulnerable to Task Hijacking used by widespread Android trojans. Task hijacking allows malicious apps to inherit permissions of vulnerable apps and is usually used for phishing login credentials of victims. Impact: Assuming a malicious actor want's to grab...

1.8AI score
Exploits0
The Hacker News
The Hacker News
added 2020/05/26 2:40 p.m.61 views

New Android Flaw Affecting Over 1 Billion Phones Let Attackers Hijack Apps

Remember Strandhogg? A security vulnerability affecting Android that malicious apps can exploit to masquerade as any other app installed on a targeted device to display fake interfaces to the users, tricking them into giving away sensitive information. Late last year, at the time of its public...

7.8CVSS0.4AI score0.00631EPSS
Exploits0
The Hacker News
The Hacker News
added 2020/05/26 2:40 p.m.7 views

New Android Flaw Affecting Over 1 Billion Phones Let Attackers Hijack Apps

Remember Strandhogg? A security vulnerability affecting Android that malicious apps can exploit to masquerade as any other app installed on a targeted device to display fake interfaces to the users, tricking them into giving away sensitive information. Late last year, at the time of its public...

7.8CVSS7.4AI score0.00631EPSS
Exploits0
Circl
Circl
added 2020/05/15 12:34 a.m.3 views

CVE-2020-0096

creationtimestamp| type| source ---|---|--- 2020-05-15 00:34:10+00:00| seen| https://t.me/cibsecurity/12088 2020-05-26 16:47:59+00:00| exploited| https://t.me/thehackernews/709 2020-05-26 17:03:25+00:00| seen| https://t.me/arvinclub/2252 2020-05-26 20:06:54+00:00| seen| https://t.me/truesecator/6...

7.8CVSS7.7AI score0.00631EPSS
Exploits0References9
The Hacker News
The Hacker News
added 2019/12/02 6:42 p.m.68 views

Unpatched Strandhogg Android Vulnerability Actively Exploited in the Wild

Cybersecurity researchers have discovered a new unpatched vulnerability in the Android operating system that dozens of malicious mobile apps are already exploiting in the wild to steal users' banking and other login credentials and spy on their activities. Dubbed Strandhogg, the vulnerability...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2019/12/02 6:42 p.m.5 views

Unpatched Strandhogg Android Vulnerability Actively Exploited in the Wild

Cybersecurity researchers have discovered a new unpatched vulnerability in the Android operating system that dozens of malicious mobile apps are already exploiting in the wild to steal users' banking and other login credentials and spy on their activities. Dubbed Strandhogg , the vulnerability...

5.9AI score
Exploits0
Rows per page
Query Builder