Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
electronics for you vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv2
CVE-2014-7457
The Electronics For You (aka com.magzter.electronicsforyou) application 3.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Magzter Electronics For You 3.02
4.6
CVSSv2
CVE-2020-0560
Improper permissions in the installer for the Intel(R) Renesas Electronics(R) USB 3.0 Driver, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Renesas Electronics Usb 3.0 Driver
1 Article
10
CVSSv2
CVE-2019-2294
Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdr...
Qualcomm Mdm9205 Firmware -
Qualcomm Mdm9206 Firmware -
Qualcomm Mdm9607 Firmware -
Qualcomm Mdm9615 Firmware -
Qualcomm Mdm9625 Firmware -
Qualcomm Mdm9635m Firmware -
Qualcomm Mdm9655 Firmware -
Qualcomm Msm8909w Firmware -
Qualcomm Msm8996au Firmware -
Qualcomm Qcs605 Firmware -
Qualcomm Qualcomm 215 Firmware -
Qualcomm Sd 210 Firmware -
Qualcomm Sd 212 Firmware -
Qualcomm Sd 205 Firmware -
Qualcomm Sd 410 Firmware -
Qualcomm Sd 412 Firmware -
Qualcomm Sd 425 Firmware -
Qualcomm Sd 427 Firmware -
Qualcomm Sd 430 Firmware -
Qualcomm Sd 435 Firmware -
Qualcomm Sd 439 Firmware -
Qualcomm Sd 429 Firmware -
2 Articles
9
CVSSv2
CVE-2015-2906
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, store SSH private keys that are the same across different customers' installations, which makes it easier for remote malicious users to obtain access by lev...
Mobile Devices C4 Obd-ii Dongle Firmware
9
CVSSv2
CVE-2015-2907
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, have hardcoded SSH credentials, which makes it easier for remote malicious users to obtain access by leveraging knowledge of the required username and password.
Mobile Devices C4 Obd-ii Dongle Firmware
9
CVSSv2
CVE-2015-2908
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, do not validate firmware updates, which allows remote malicious users to execute arbitrary code by specifying an update server.
Mobile Devices C4 Obd-ii Dongle Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started