NVIDIA KAI Scheduler 访问控制错误漏洞

NVIDIA KAI Scheduler is an AI-based computing task scheduling system developed by NVIDIA Corporation. NVIDIA KAI Scheduler has a vulnerability related to access control, which stems from unauthorized access to API endpoints, potentially leading to information leakage...

CVE-2026-40196 HomeBox has Unauthorized API Access via Retained defaultGroup ID After Group Access Revocation

HomeBox is a home inventory and organization system. Versions prior to 0.25.0 contain a vulnerability where the defaultGroup ID remained permanently assigned to a user after being invited to a group, even after their access to that group was revoked. While the web interface correctly enforced the...

EUVD-2022-39152

Malicious code in bioql PyPI...

CVE-2022-36442

An issue was discovered in Zebra Enterprise Home Screen 4.1.19. By using the embedded Google Chrome application, it is possible to install an unauthorized application via a downloaded APK...

ASB-A-382064697

Bulletin has no description...

Vulnerabilities fixed in GitLab CE/EE

GitLab has fixed vulnerabilities in GitLab CE/EE Specifically for versions 16.0 to 17.5.2. The vulnerabilities are in multiple versions of GitLab CE/EE and allow malicious actors to gain unauthorized full API access via the Device OAuth flow. This can lead to serious implications for organization...

Leap Apps Group Blue Light Filter 安全漏洞

Leap Apps Group Blue Light Filter is a blue light filter application from Leap Apps Group, Inc. A security vulnerability exists in Leap Apps Group Blue Light Filter version v.1.5.5 that originates from an unauthorized application that causes privilege escalation through manipulation of the...

Facemoji Emoji Keyboard 安全漏洞

Facemoji Emoji Keyboard is a free AI smart chatgbt Cool custom keyboard font from Facemoji. A security vulnerability exists in Facemoji Emoji Keyboard version v.2.9.1.2, which originates from an unauthorized application that causes privilege escalation by manipulating certain components...

Glitter Unicorn Wallpaper 安全漏洞

Glitter unicorn wallpaper is a wallpaper application. A security vulnerability exists in Glitter Unicorn Wallpaper versions 7.0 through 8.0, which stems from a vulnerability that allows an unauthorized application to actively request permissions to insert data into a database, which could allow a...

CVE-2022-36442

An issue was discovered in Zebra Enterprise Home Screen 4.1.19. By using the embedded Google Chrome application, it is possible to install an unauthorized application via a downloaded APK...

Code injection

An issue was discovered in Zebra Enterprise Home Screen 4.1.19. By using the embedded Google Chrome application, it is possible to install an unauthorized application via a downloaded APK...

CVE-2022-36442

An issue was discovered in Zebra Enterprise Home Screen 4.1.19. By using the embedded Google Chrome application, it is possible to install an unauthorized application via a downloaded APK...

CVE-2022-36442

An issue was discovered in Zebra Enterprise Home Screen 4.1.19. By using the embedded Google Chrome application, it is possible to install an unauthorized application via a downloaded APK...

CVE-2022-36442

CVE-2022-36442 affects Zebra Enterprise Home Screen 4.1.19. The issue arises from the embedded Google Chrome component, enabling installation of unauthorized applications via a downloaded APK. Root cause: abuse of the embedded Chrome within the Zebra app to install software without authorization....

Samsung Wear Os Access Control Error Vulnerability

Samsung Wear Os is a version of the Android operating system from Samsung South Korea, designed for wearable computer devices such as smartwatches. Designed for wearable computer devices such as smartwatches, an access control error vulnerability exists in StRetailModeReceiver in Samsung Wear Os ...

Infinix Note 5 Access Control Error Vulnerability

Infinix Note 5 is a smartphone from the Chinese company Transn Infinix. The Infinix Note 5 build fingerprint: Infinix/H633IJL/Infinix-X604sprout:8.1.0/O11019/IJL-180531V181:user/release-keys contains an access control error in the com.mediatek.wfo An access control error vulnerability exists in t...

Citrix ICA Unauthorized Application

...

CVE-2018-15491

A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior fixed in 1.9.3.602 allows an attacker to take control of the whitelisting feature MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK to permit execution of unauthorized applications such as ones...

CVE-2017-14124

In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to change application definitions...

Symantec ITMS Inventory Solution Application Denial Functionality Bypass

SUMMARY The Inventory Solution component of Symantecs IT Management Agent, the client portion of Symantec IT Management Suite ITMS powered by Altiris, can be configured to deny one or more applications from running on a windows managed client as part of IT management functions. A determined user...