Vulnerabilities > Oppo > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-08-10 CVE-2023-26311 Unspecified vulnerability in Oppo Store 1.5.11
A remote code execution vulnerability in the webview component of OPPO Store app.
network
low complexity
oppo
critical
9.8
2023-08-09 CVE-2023-26310 Command Injection vulnerability in Oppo Coloros 12.3
There is a command injection problem in the old version of the mobile phone backup app.
network
low complexity
oppo CWE-77
critical
9.8
2022-04-01 CVE-2021-23247 Command Injection vulnerability in Oppo Quick APP 4.5.0
A command injection vulerability found in quick game engine allows arbitrary remote code in quick app.
network
low complexity
oppo CWE-77
critical
9.8
2020-11-19 CVE-2020-11831 Incorrect Permission Assignment for Critical Resource vulnerability in Oppo Ovoicemanager 2.0.1
OvoiceManager has system permission to write vulnerability reports for arbitrary files, affected product is com.oppo.ovoicemanager V2.0.1.
network
low complexity
oppo CWE-732
critical
9.8
2020-11-19 CVE-2020-11830 Unspecified vulnerability in Oppo Qualityprotect 2.0
QualityProtect has a vulnerability to execute arbitrary system commands, affected product is com.oppo.qualityprotect V2.0.
network
low complexity
oppo
critical
9.8
2020-11-19 CVE-2020-11829 Unspecified vulnerability in Oppo Coloros 2.0.05493E40200722
Dynamic loading of services in the backup and restore SDK leads to elevated privileges, affected product is com.coloros.codebook V2.0.0_5493e40_200722.
network
low complexity
oppo
critical
9.8