Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android api vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-20194
A vulnerability in the ERS API of Cisco ISE could allow an authenticated, remote malicious user to read arbitrary files on the underlying operating system of an affected device. To exploit this vulnerability, an attacker must have valid Administrator-level privileges on the affec...
Cisco Identity Services Engine
Cisco Identity Services Engine 3.0.0
Cisco Identity Services Engine 3.1
Cisco Identity Services Engine 3.2
1 Article
NA
CVE-2023-30682
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local malicious users to call silenceRinger API without permission.
Samsung Android 13.0
NA
CVE-2023-30683
Improper access control in Telecom prior to SMR Aug-2023 Release 1 allows local malicious users to call endCall API without permission.
Samsung Android 13.0
NA
CVE-2023-30684
Improper access control in Samsung Telecom prior to SMR Aug-2023 Release 1 allows local malicious users to call acceptRingingCall API without permission.
Samsung Android 13.0
NA
CVE-2023-28387
"NewsPicks" App for Android versions 10.4.5 and previous versions and "NewsPicks" App for iOS versions 10.4.2 and previous versions use hard-coded credentials, which may allow a local malicious user to analyze data in the app and to obtain API key for an exter...
Uzabase Newspicks
NA
CVE-2023-25747
A potential use-after-free in libaudio was fixed by disabling the AAudio backend when running on Android API below version 30. *This bug only affects Firefox for Android. Other versions of Firefox are unaffected.* This vulnerability affects Firefox for Android < 110.1.0.
Mozilla Firefox
NA
CVE-2023-29533
A website could have obscured the fullscreen notification by using a combination of <code>window.open</code>, fullscreen requests, <code>window.name</code> assignments, and <code>setInterval</code> calls. This could have led to user confusion a...
Mozilla Thunderbird
Mozilla Focus
Mozilla Firefox Esr
Mozilla Firefox
NA
CVE-2023-29535
Following a Garbage Collector compaction, weak maps may have been accessed before they were correctly traced. This resulted in memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, ...
Mozilla Thunderbird
Mozilla Focus
Mozilla Firefox Esr
Mozilla Firefox
NA
CVE-2023-29536
An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox E...
Mozilla Thunderbird
Mozilla Focus
Mozilla Firefox Esr
Mozilla Firefox
NA
CVE-2023-29539
When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to install malware. This vulnerability affects Fir...
Mozilla Thunderbird
Mozilla Focus
Mozilla Firefox Esr
Mozilla Firefox
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »