Vulnerabilities (CVE)

Filtered by vendor Fedirtsapana Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-43955 1 Fedirtsapana 1 Tv Bro 2024-01-09 N/A 9.8 CRITICAL
The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Android mishandles external intents through WebView. This allows attackers to execute arbitrary code, create arbitrary files. and perform arbitrary downloads via JavaScript that uses takeBlobDownloadData.
CVE-2023-46919 1 Fedirtsapana 2 Simple Http Server, Simple Http Server Plus 2024-01-05 N/A 6.3 MEDIUM
Phlox com.phlox.simpleserver (aka Simple HTTP Server) 1.8 and (aka Simple HTTP Server PLUS) 1.8.1-plus have a hardcoded aKySWb2jjrr4dzkYXczKRt7K encryption key. The threat is from a man-in-the-middle attacker who can intercept and potentially modify data during transmission.
CVE-2023-46918 1 Fedirtsapana 1 Simple Http Server Plus 2024-01-05 N/A 4.6 MEDIUM
Phlox (aka Simple HTTP Server PLUS) 1.8.1-plus has an Android manifest file that contains an entry with the android:allowBackup attribute set to true. This could be leveraged by an attacker with physical access to the device.