CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-26310 – Command Injection In OPPO Service
https://notcve.org/view.php?id=CVE-2023-26310
There is a command injection problem in the old version of the mobile phone backup app. • https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1684402464721477632 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') •
CVSS: 7.8EPSS: 0%CPEs: 38EXPL: 0CVE-2021-23243
https://notcve.org/view.php?id=CVE-2021-23243
In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used. En la aplicación de la batería de Oppo, el SDK de terceros proporciona la función de cargar un proveedor de terceros, que puede ser usada • https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1437389627236556800 •