Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mobile security vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-41547
Mobile Security Framework (MobSF) v0.9.2 and below exists to contain a local file inclusion (LFI) vulnerability in the StaticAnalyzer/views.py script. This vulnerability allows malicious users to read arbitrary files via a crafted HTTP request.
Opensecurity Mobile Security Framework
5.3
CVSSv3
CVE-2016-6585
A Denial of Service vulnerability exists in Symantec Norton Mobile Security for Android before 3.16, which could let a remote malicious user conduct a man-in-the-middle attack via specially crafted JavaScript.
Symantec Norton Mobile Security
5.5
CVSSv3
CVE-2016-6587
An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec Norton Mobile Security for Android prior to 3.16, which could let a local malicious user obtain sensitive information.
Symantec Norton Mobile Security
7.4
CVSSv3
CVE-2016-3664
Trend Micro Mobile Security for iOS prior to 3.2.1188 does not verify the X.509 certificate of the mobile application login server, which allows man-in-the-middle malicious users to spoof this server and obtain sensitive information via a crafted certificate.
Trend Micro Mobile Security
3.7
CVSSv3
CVE-2016-6586
A security bypass vulnerability exists in Symantec Norton Mobile Security for Android prior to 3.16, which could let a malicious user conduct a man-in-the-middle via specially crafted JavaScript to add arbitrary URLs to the URL whitelist.
Symantec Norton Mobile Security
8.8
CVSSv3
CVE-2017-14079
Unrestricted file uploads in Trend Micro Mobile Security (Enterprise) versions prior to 9.7 Patch 3 allow remote malicious users to execute arbitrary code on vulnerable installations.
Trendmicro Mobile Security 9.7
9.8
CVSSv3
CVE-2017-14080
Authentication bypass vulnerability in Trend Micro Mobile Security (Enterprise) versions prior to 9.7 Patch 3 allows malicious users to access a specific part of the console using a blank password.
Trendmicro Mobile Security 9.7
7.5
CVSSv3
CVE-2023-35695
A remote attacker could leverage a vulnerability in Trend Micro Mobile Security (Enterprise) 9.8 SP5 to download a particular log file which may contain sensitive information regarding the product.
Trendmicro Mobile Security 9.8
6.1
CVSSv3
CVE-2023-41176
Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an authenticated victim that visits a malicious link provided by an attacker. Please note, this vulnerability is similar to, but not identical to, CVE-2...
Trendmicro Mobile Security 9.8
6.1
CVSSv3
CVE-2023-41177
Reflected cross-site scripting (XSS) vulnerabilities in Trend Micro Mobile Security (Enterprise) could allow an exploit against an authenticated victim that visits a malicious link provided by an attacker. Please note, this vulnerability is similar to, but not identical to, CVE-2...
Trendmicro Mobile Security 9.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »