Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-926

CWE-926

Improper Export of Android Application Components

Parent: CWE-285 - Improper Authorization

The Android application exports a component for use by other applications, but does not properly restrict which applications can launch the component or access the data it contains.

78 vulnerabilities with CWE-926

CVE-2024-13916 MEDIUM

Kruger&Matz com.pri.applock 13 - Unauthenticated PIN Code Exfiltration via Exported Content Provider

CVE-2024-13915 MEDIUM

Ulefone and Krger&Matz com.pri.factorytest < 1.0 - Unauthenticated Factory Reset via Exported Service

CVE-2024-36437 MEDIUM

TextNow <24.17.0.2 - Code Injection

CVE-2024-6051 MEDIUM

Vercom S.A. Redlink SDK <1.13 - XSS

CVE-2024-3479 LOW

Motorola Enterprise MotoDpms Provider - Info Disclosure

CVE-2024-27086 LOW

Microsoft.Identity.Client 4.48.0-4.60.0 - Local Denial of Service via Activity Export Misconfiguration

CVE-2023-41823 MEDIUM

Motorola Phone Extension - Code Injection

CVE-2023-41822 MEDIUM

Motorola Interface Test Tool - Command Injection

CVE-2023-41821 MEDIUM

Motorola Phones < 2023-09-01 - Sensitive User Information Exposure via Setup Application

CVE-2023-41816 MEDIUM

Motorola Services Main - Info Disclosure

CVE-2023-41829 MEDIUM

Motorola Carrier Services - Info Disclosure

CVE-2023-41827 MEDIUM

Motorola Phones < 2023-08-01 - Improper Export of Android Application Components

CVE-2023-41960 HIGH

Bosch Rexroth Android Agent - Exposed Content Provider Settings Modification

CVE-2023-44129 LOW

Android 12.0-12.9 - Unauthenticated Intent Redirection via QClipIntentReceiverActivity

CVE-2023-44121 MEDIUM

LG ThinQ Service on Android 9.0-12.0 - Intent Redirection via Broadcast Action

CVE-2023-21486 MEDIUM

Samsung Android - Unauthenticated Data Exposure via ImagePreviewActivity Component Export

CVE-2023-21485 MEDIUM

VideoPreviewActivity - Info Disclosure

CVE-2023-20962 MEDIUM

Android 13 - Local Information Disclosure via Unsafe PendingIntent in MediaVolumePreferenceController

CVE-2022-24929 MEDIUM

AppLock <SMR Mar-2022 Release 1 - Privilege Escalation

CVE-2021-4438 MEDIUM

kyivstarteam react-native-sms-user-consent <1.1.5 - Improper Export

CVE-2021-25527 LOW

Samsung Pay <4.1.77 - Info Disclosure

CVE-2021-25526 MEDIUM

Samsung Blockchain Wallet <1.3.02.8 - Privilege Escalation

CVE-2021-25400 HIGH

Samsung Internet <14.0.1.20 - Privilege Escalation

CVE-2021-25397 MEDIUM

TelephonyUI <SMR MAY-2021 Release 1 - Privilege Escalation

CVE-2021-25391 MEDIUM

Secure Folder <SMR MAY-2021 Release 1 - Privilege Escalation

Previous Page 3 of 4 Next

Details

Vulnerabilities 78

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy