Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mobile security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-31684
Incorrect access control in the fingerprint authentication mechanism of Bitdefender Mobile Security v4.11.3-gms allows malicious users to bypass fingerprint authentication due to the use of a deprecated API.
8.6
CVSSv3
CVE-2024-24919
Potentially allowing an malicious user to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
Checkpoint Quantum Security Gateway Firmware R80.40
Checkpoint Cloudguard Network Security R81.20
Checkpoint Cloudguard Network Security R81.10
Checkpoint Cloudguard Network Security R81.0
Checkpoint Cloudguard Network Security R80.40
Checkpoint Quantum Security Gateway Firmware R81.20
Checkpoint Quantum Security Gateway Firmware R81.10
Checkpoint Quantum Security Gateway Firmware R81.0
Checkpoint Quantum Spark Firmware R81.10
Checkpoint Quantum Spark Firmware R80.20
39 Github repositories
4 Articles
NA
CVE-2024-23186
E-Mail containing malicious display-name information could trigger client-side script execution when using specific mobile devices. Attackers could perform malicious API requests or extract information from the users account. Please deploy the provided updates and patch releases....
5
CVSSv3
CVE-2024-26220
Windows Mobile Hotspot Information Disclosure Vulnerability
1 Article
NA
CVE-2024-31215
Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase database check logic. The attacker can cause the server to make a connection to internal-only services within the organiz...
NA
CVE-2024-29190
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in `android:host`, ...
NA
CVE-2024-29944
An attacker was able to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process. Note: This vulnerability affects Desktop Firefox only, it does not affect mobile versions of Firefox. This vulnerability affects Firefox...
2 Articles
6.1
CVSSv3
CVE-2023-41176
Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an authenticated victim that visits a malicious link provided by an attacker. Please note, this vulnerability is similar to, but not identical to, CVE-2...
Trendmicro Mobile Security 9.8
6.1
CVSSv3
CVE-2023-41177
Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an authenticated victim that visits a malicious link provided by an attacker. Please note, this vulnerability is similar to, but not identical to, CVE-2...
Trendmicro Mobile Security 9.8
6.1
CVSSv3
CVE-2023-41178
Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an authenticated victim that visits a malicious link provided by an attacker. Please note, this vulnerability is similar to, but not identical to, CVE-2...
Trendmicro Mobile Security 9.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »