Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-3124
A vulnerability classified as problematic has been found in fridgecow smartalarm 1.8.1 on Android. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control spher...
NA
CVE-2024-3130
Hard-coded Credentials in CoolKit eWeLlink app are prior to 5.4.x on Android and IOS allows local malicious user to unauthorized access to sensitive data via Decryption algorithm and key obtained after decompiling app
NA
CVE-2024-28895
'Yahoo! JAPAN' App for Android v2.3.1 to v3.161.1 and 'Yahoo! JAPAN' App for iOS v3.2.2 to v4.109.0 contain a cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the WebView of 'Yahoo! JAPAN'...
NA
CVE-2024-3094
Malicious code exists in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific fun...
Tukaani Xz 5.6.1
Tukaani Xz 5.6.0
71 Github repositories
4 Articles
NA
CVE-2024-23727
The YI Smart Kami Vision com.kamivision.yismart application up to and including 1.0.0_20231219 for Android allows a remote malicious user to execute arbitrary JavaScript code via an implicit intent to the com.ants360.yicamera.activity.WebViewActivity component.
NA
CVE-2024-28756
The SolarEdge mySolarEdge application prior to 2.20.1 for Android has a certificate verification issue that allows a Machine-in-the-middle (MitM) malicious user to read and alter all network traffic between the application and the server.
NA
CVE-2024-26196
Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability
Microsoft Edge
NA
CVE-2024-28745
Improper export of Android application components issue exists in 'ABEMA' App for Android before 10.65.0 allowing another app installed on the user's device to access an arbitrary URL on 'ABEMA' App for Android via Intent. If this vulnerability is exploit...
NA
CVE-2024-2567
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, was found in jurecapuder AndroidWeatherApp 1.0.0 on Android. Affected is an unknown function of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to expos...
NA
CVE-2023-36483
Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and previous versions and MASmobile Classic iOS version 1.7.24 and previous versions which allows remote malicious users to retrieve sensitive data including customer data, ...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »