Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure mobile access vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2017-13103
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none
7.5
CVSSv3
CVE-2017-13104
Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Uber Ubereats 1.108.10001
5.9
CVSSv3
CVE-2017-13105
Hi Security Virus Cleaner - Antivirus, Booster, 3.7.1.1329, 2017-09-13, Android application accepts all SSL certificates during SSL communication. This opens the application up to a man-in-the-middle attack having all of its encrypted traffic intercepted and read by an attacker.
Hisecuritylab Virus Cleaner 3.7.1.1329
7.5
CVSSv3
CVE-2017-13106
Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, 5.0.3, 2017-09-19, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Cmcm Cm Launcher 3d 5.0.3
7.5
CVSSv3
CVE-2017-13107
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Liveme Liveme 3.7.20
7.5
CVSSv3
CVE-2017-13108
DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Psafe Dfndr Security 5.0.9
7.8
CVSSv3
CVE-2018-11257
Permissions, Privileges, and Access Controls in TA in Snapdragon Mobile has an options that allows RPMB erase for secure devices in versions SD 210/SD 212/SD 205, SD 845, SD 850.
Qualcomm Sd 210 Firmware -
Qualcomm Sd 212 Firmware -
Qualcomm Sd 205 Firmware -
Qualcomm Sd 845 Firmware -
Qualcomm Sd 850 Firmware -
7.7
CVSSv3
CVE-2018-11259
Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the mode...
Qualcomm Mdm9206 Firmware -
Qualcomm Mdm9607 Firmware -
Qualcomm Mdm9635m Firmware -
Qualcomm Mdm9640 Firmware -
Qualcomm Mdm9650 Firmware -
Qualcomm Mdm9655 Firmware -
Qualcomm Msm8909w Firmware -
Qualcomm Msm8996au Firmware -
Qualcomm Sd 210 Firmware -
Qualcomm Sd 212 Firmware -
Qualcomm Sd 205 Firmware -
Qualcomm Sd 410 Firmware -
Qualcomm Sd 412 Firmware -
Qualcomm Sd 425 Firmware -
Qualcomm Sd 427 Firmware -
Qualcomm Sd 430 Firmware -
Qualcomm Sd 435 Firmware -
Qualcomm Sd 450 Firmware -
Qualcomm Sd 615 Firmware -
Qualcomm Sd 616 Firmware -
Qualcomm Sd 415 Firmware -
Qualcomm Sd 617 Firmware -
7.5
CVSSv3
CVE-2018-0296
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote malicious user to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possible on certain software ...
Cisco Adaptive Security Appliance Software 8.1\\(2.5\\)
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense 6.2.3
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 6.2.3.1
Cisco Firepower Threat Defense 6.2.3-851
Cisco Firepower Threat Defense 6.2.3-85.02
2 EDB exploits
11 Github repositories
1 Article
6.8
CVSSv3
CVE-2018-6242
Some NVIDIA Tegra mobile processors released before 2016 contain a buffer overflow vulnerability in BootROM Recovery Mode (RCM). An attacker with physical access to the device's USB and the ability to force the device to reboot into RCM could exploit the vulnerability to exe...
Nvidia Tegra Bootrom Rcm -
10 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »