Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android api vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-5635
The Newphoria Koritore application prior to 1.1 for Android and prior to 1.1 for iOS allows malicious users to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors.
Newphoria Corporation Koritore
NA
CVE-2015-5636
The Newphoria Reversi application prior to 1.0.3 for Android and prior to 1.2 for iOS allows malicious users to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors.
Newphoria Corporation Reversi
4.6
CVSSv3
CVE-2023-36620
An issue exists in the Boomerang Parental Control application prior to 13.83 for Android. The app is missing the android:allowBackup="false" attribute in the manifest. This allows the user to backup the internal memory of the app to a PC. This gives the user access to t...
Nationaledtech Boomerang
NA
CVE-2015-5634
The Newphoria MEGAPHONE MUSIC application prior to 1.1 for Android and prior to 1.1 for iOS allows malicious users to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors.
Newphoria Corporation Megaphone Music
9.8
CVSSv3
CVE-2015-9219
In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400 and SD 800, an integer overflow to buffer overflow can occur in a DRM API.
Qualcomm Sd 400 Firmware -
Qualcomm Sd 800 Firmware -
5.9
CVSSv3
CVE-2019-16252
Missing SSL Certificate Validation in the Nutfind.com application up to and including 3.9.12 for Android allows a man-in-the-middle malicious user to sniff and manipulate all API requests, including login credentials and location data.
Nutfind Nutfind
5.5
CVSSv3
CVE-2021-43512
An issue exists in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android, allows malicious users to cause unspecified consequences due to being able to decompile a local application and extract their API keys.
Flightradar24 Flightradar24 Flight Tracker 8.9.0
Flightradar24 Flightradar24 Flight Tracker 8.10.0
Flightradar24 Flightradar24 Flight Tracker 8.10.2
Flightradar24 Flightradar24 Flight Tracker 8.10.3
Flightradar24 Flightradar24 Flight Tracker 8.10.4
NA
CVE-2013-3399
Buffer overflow in an unspecified Android API on the Cisco Desktop Collaboration Experience DX650 allows malicious users to execute arbitrary code via vectors that leverage incorrect memory allocation, aka Bug IDs CSCuf93957, CSCug22352, and CSCug22462.
Cisco Desktop Collaboration Experience Dx650
NA
CVE-2015-5632
The runtime engine in the Newphoria applican framework prior to 1.12.3 for Android and prior to 1.12.2 for iOS allows malicious users to bypass a whitelist.xml URL whitelist protection mechanism and obtain API access via unspecified vectors.
Newphoria Corporation Applican
5.6
CVSSv3
CVE-2016-4811
The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and previous versions for Android and 1.13.0 and previous versions for iOS allows man-in-the-middle malicious users to obtain API access via unspecified vectors.
Ntt-bp Japan Connected-free Wi-fi 1.15.1
Ntt-bp Japan Connected-free Wi-fi 1.13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »