Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2026/04/30 8:48 p.m.3 views

EUVD-2026-26435

IBM Langflow Desktop 1.0.0 through 1.8.4 Langflow could allow an unauthenticated user to view other users' images due to an indirect object reference through a user-controlled key...

7.5CVSS5.2AI score0.0034EPSS
Exploits0References1
CNVD
CNVDadded 2025/12/10 12:0 a.m.3 views

Google Android Logic Error Vulnerability (CNVD-2025-3146618)

Google Android is a free and open source mobile operating system based on the Linux kernel developed by Google. Google Android suffers from a logic error vulnerability that stems from a logic error issue in Session.java, which can be exploited by an attacker to view images of other users on the...

7.8CVSS6.4AI score0.00083EPSS
Exploits0References1
EUVD
EUVDadded 2025/12/08 6:30 p.m.5 views

EUVD-2025-201784

In multiple functions of Session.java, there is a possible way to view images belonging to a different user of the device due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS6.3AI score0.00083EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/12/08 4:56 p.m.2 views

CVE-2025-32328

In multiple functions of Session.java, there is a possible way to view images belonging to a different user of the device due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

6.5AI score0.00083EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/12/01 12:0 a.m.5 views

PT-2025-49000

Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description A flaw exists in the Framework component of Android operating systems due to insufficient protection of service data. Exploitation may allow a remote attacker to elevate privileges...

7.8CVSS6.7AI score0.00083EPSS
Exploits0References9
EUVD
EUVDadded 2025/10/03 8:7 p.m.6 views

EUVD-2025-26580

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00075EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-27007

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.00073EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/09/02 10:11 p.m.5 views

CVE-2025-22416

In onCreate of ChooserActivity.java , there is a possible way to view other users' images due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00075EPSS
Exploits0References2
OSV
OSVadded 2023/10/27 9:15 p.m.5 views

CVE-2023-40137

In multiple functions of DialogFillUi.java, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

3.3CVSS5.9AI score0.00091EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/10/27 12:0 a.m.6 views

PT-2023-27287 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to a confused deputy in the applyCustomDescription function of SaveUi.java, allowing an attacker to view another user's images. This could lead to local information...

3.3CVSS6.2AI score0.00089EPSS
Exploits0References7
Rows per page
Query Builder