Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lock vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-5453
Bypass lock protection in the Nextcloud Android app prior to version 3.3.0 allowed access to files when being prompted for the lock protection and switching to the Nextcloud file provider.
Nextcloud Nextcloud
Nextcloud Nextcloud 3.3.0
3.3
CVSSv3
CVE-2023-37448
A lock screen issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. A user may be able to view restricted content from the lock screen.
Apple Macos
9.1
CVSSv3
CVE-2022-26629
An Access Control vulnerability exists in SoroushPlus+ Messenger 1.0.30 in the Lock Screen Security Feature function due to insufficient permissions and privileges, which allows a malicious attacker bypass the lock screen function.
Splus Soroushplus 1.0.30
2 Github repositories
NA
CVE-2012-3750
The Passcode Lock implementation in Apple iOS prior to 6.0.1 does not properly manage the lock state, which allows physically proximate malicious users to bypass an intended passcode requirement and access Passbook passes via unspecified vectors.
Apple Iphone Os
Apple Iphone Os 4.3.1
Apple Iphone Os 4.3.0
Apple Iphone Os 4.0
Apple Iphone Os 5.0
Apple Iphone Os 4.3.5
Apple Iphone Os 4.2.1
Apple Iphone Os 4.1
Apple Iphone Os 3.1.2
Apple Iphone Os 3.1
Apple Iphone Os 2.0.2
Apple Iphone Os 2.0.1
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.0
Apple Iphone Os 5.1.1
Apple Iphone Os 5.0.1
Apple Iphone Os 4.2.8
Apple Iphone Os 4.2.5
Apple Iphone Os 3.2
Apple Iphone Os 3.1.3
Apple Iphone Os 2.1.1
Apple Iphone Os 2.1
NA
CVE-1999-1025
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
Sun Sunos 5.6
Sun Solaris 2.6
Sun Sunos -
NA
CVE-2006-7216
Apache Derby prior to 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and consequently does not enforce privilege requirements at execution time, which allows remote authenticated users to lock arbitrary tables.
Apache Derby 10.1.1.0
Apache Derby 10.1.2.1
Apache Derby 10.1.3.1
8.8
CVSSv3
CVE-2022-46308
SGUDA U-Lock central lock control service’s user management function has incorrect authorization. A remote attacker with general user privilege can exploit this vulnerability to call privileged APIs to access, modify and delete user information.
Sguda U-lock Firmware -
8.1
CVSSv3
CVE-2023-34625
ShowMojo MojoBox Digital Lockbox 1.4 is vulnerable to Authentication Bypass. The implementation of the lock opening mechanism via Bluetooth Low Energy (BLE) is vulnerable to replay attacks. A malicious user is able to intercept BLE requests and replicate them to open the lock at ...
Showmojo Mojobox Firmware 1.4
NA
CVE-2013-0980
The Passcode Lock implementation in Apple iOS prior to 6.1.3 does not properly manage the lock state, which allows physically proximate malicious users to bypass an intended passcode requirement by leveraging an error in the emergency-call feature.
Apple Iphone Os
Apple Iphone Os 5.0
Apple Iphone Os 5.0.1
Apple Iphone Os 5.1
Apple Iphone Os 5.1.1
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 3.1
Apple Iphone Os 3.1.2
Apple Iphone Os 1.0.1
Apple Iphone Os 1.0.2
Apple Iphone Os 1.1.0
Apple Iphone Os 1.1.1
Apple Iphone Os 3.2
Apple Iphone Os 3.1.3
Apple Iphone Os 4.3.5
Apple Iphone Os 4.2.1
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.8
Apple Iphone Os 4.3.0
Apple Iphone Os 2.0.0
Apple Iphone Os 2.0.1
6.8
CVSSv3
CVE-2017-8166
Huawei mobile phones Honor V9 with the software versions before Duke-AL20C00B195 have an App Lock bypass vulnerability. An attacker could perform specific operations to bypass the App Lock to use apps on a target mobile phone.
Huawei Honor V9 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »