Lucene search
K

173 matches found

Cvelist
Cvelist
added 2025/08/03 2:2 p.m.15 views

CVE-2025-8512 TVB Big Big Shop App hk.com.tvb.bigbigshop AndroidManifest.xml improper export of android application components

A vulnerability, which was classified as problematic, has been found in TVB Big Big Shop App 2.9.0 on Android. This issue affects some unknown processing of the file AndroidManifest.xml of the component hk.com.tvb.bigbigshop. The manipulation leads to improper export of android application...

5.3CVSS0.00123EPSS
Exploits0References4
CVE
CVE
added 2025/08/03 2:2 p.m.16 views

CVE-2025-8512

CVE-2025-8512 affects TVB Big Big Shop App v2.9.0 on Android. The issue stems from improper handling of the AndroidManifest.xml in the component hk.com.tvb.bigbigshop, causing improper export of Android application components. Local-access exploitation is required; the exploit has been publicly d...

5.3CVSS5.2AI score0.00123EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/03 12:0 a.m.7 views

PT-2025-31789 · Tvb · Tvb Big Big Shop App

Name of the Vulnerable Software and Affected Versions: TVB Big Big Shop App version 2.9.0 Description: A problematic vulnerability has been identified in the TVB Big Big Shop App for Android. The issue involves improper export of Android application components due to unknown processing of the...

5.3CVSS4.9AI score0.00123EPSS
Exploits0References10
CVE
CVE
added 2025/07/28 5:2 a.m.26 views

CVE-2025-8258

Summary of CVE-2025-8258 : Affects the Android app “Cool Mo Maigcal Number App” (version up to 1.0.3) and its AndroidManifest.xml handling for component com.sdmagic.number. The vulnerability allows improper export of Android components via a local attack path. Exploitation is indicated as publicl...

5.3CVSS7.1AI score0.002EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/07/26 9:15 p.m.5 views

CVE-2025-8210

A vulnerability was found in Yeelink Yeelight App up to 3.5.4 on Android. It has been classified as problematic. Affected is an unknown function of the file AndroidManifest.xml of the component com.yeelight.cherry. The manipulation leads to improper export of android application components...

5.3CVSS0.0021EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/07/21 9:2 p.m.13 views

CVE-2025-7940 Genshin Albedo Cat House App com.house.auscat AndroidManifest.xml improper export of android application components

A vulnerability was found in Genshin Albedo Cat House App 1.0.2 on Android. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.house.auscat. The manipulation leads to improper export of android...

5.3CVSS0.00132EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/21 12:0 a.m.13 views

CVE-2025-43976

The com.enflick.android.tn2ndLine application through 24.17.1.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity component...

0.00185EPSS
Exploits1References3
NVD
NVD
added 2025/07/20 1:15 p.m.12 views

CVE-2025-7891

A vulnerability was found in InstantBits Web Video Cast App up to 5.12.4 on Android. It has been rated as problematic. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.instantbits.cast.webvideo. The manipulation leads to improper export of...

5.5CVSS0.00301EPSS
Exploits1References5
NVD
NVD
added 2025/07/20 1:15 p.m.8 views

CVE-2025-7890

A vulnerability was found in Dunamu StockPlus App up to 7.62.10 on Android. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.dunamu.stockplus. The manipulation leads to improper export of android...

5.5CVSS0.00277EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 12:36 a.m.7 views

CVE-2022-20177

Product: AndroidVersions: Android kernelAndroid ID: A-209906686References: N/A...

7.5CVSS6.9AI score0.00375EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:48 p.m.6 views

CVE-2022-22286

A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R11.0 and 2.6.30.5 in Android Q10.0 allows attackers to execute privileged action by hijacking and modifying the intent...

7.1CVSS7.1AI score0.00276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:44 p.m.5 views

CVE-2022-41986

Information disclosure vulnerability in Android App 'IIJ SmartKey' versions prior to 2.1.4 allows an attacker to obtain a one-time password issued by the product under certain conditions...

7.5CVSS6.7AI score0.00608EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:35 p.m.6 views

CVE-2022-20283

In Bluetooth, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-233069336...

8.8CVSS7.8AI score0.0024EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:20 p.m.12 views

CVE-2022-20175

Product: AndroidVersions: Android kernelAndroid ID: A-209252491References: N/A...

7.5CVSS6.9AI score0.00375EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:35 p.m.6 views

CVE-2021-43544

When receiving a URL through a SEND intent, Firefox would have searched for the text, but subsequent usages of the address bar might have caused the URL to load unintentionally, which could lead to XSS and spoofing attacks. This bug only affects Firefox for Android. Other operating systems are...

6.1CVSS5.3AI score0.0051EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:59 p.m.11 views

CVE-2021-0442

In updateInfo of androidhardwareinputInputApplicationHandle.cpp, there is a possible control of code flow due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.3AI score0.00119EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:12 p.m.4 views

CVE-2021-1045

Product: AndroidVersions: Android kernelAndroid ID: A-195580473References: N/A...

7.5CVSS6.9AI score0.00462EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:45 p.m.7 views

CVE-2020-6159

URLs using “javascript:” have the protocol removed when pasted into the address bar to protect users from cross-site scripting XSS attacks, but in certain circumstances this removal was not performed. This could allow users to be socially engineered to run an XSS attack against themselves. This...

6.1CVSS5.3AI score0.00634EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:34 p.m.7 views

CVE-2020-27043

In nfcenabled of nfcmain.cc, there is a possible out of bounds read due to an incorrect increment. This could lead to local information disclosure via firmware with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

4.4CVSS7.4AI score0.00137EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.9 views

CVE-2020-0382

In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. This could lead to local information disclosure of bug report data with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...

2.3CVSS6.2AI score0.00152EPSS
Exploits0References1
Rows per page
Query Builder