CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-41826
https://notcve.org/view.php?id=CVE-2023-41826
03 May 2024 — A PendingIntent hijacking vulnerability in Motorola Device Help (Genie) application that could allow local attackers to access files or interact with non-exported software components without permission. Una vulnerabilidad de secuestro PendingIntent en la aplicación Motorola Device Help (Genie) que podría permitir a atacantes locales acceder a archivos o interactuar con componentes de software no exportados sin permiso. • https://en-us.support.motorola.com/app/answers/detail/a_id/178703 • CWE-927: Use of Implicit Intent for Sensitive Communication •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-3898
https://notcve.org/view.php?id=CVE-2021-3898
22 Apr 2022 — Versions of Motorola Ready For and Motorola Device Help Android applications prior to 2021-04-08 do not properly verify the server certificate which could lead to the communication channel being accessible by an attacker. Las versiones de las aplicaciones Android de Motorola Ready For y Motorola Device Help anteriores al 08-04-2021, no verifican apropiadamente el certificado del servidor, lo que podría conllevar a que el canal de comunicación fuera accesible para un atacante • https://support.lenovo.com/us/en/product_security/LEN-58311 • CWE-295: Improper Certificate Validation •