Johan Francsics

**Name of the Vulnerable Software and Affected Versions** RoboForm Password Manager (affected versions not specified) **Description** The RoboForm Password Manager Android application handles Android intents without sufficient URL validation, user confirmation, or notification. This allows the application to silently download files from a malicious web page if a URL is provided through an intent. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: RoboForm Password Manager versions prior to 9.7.4 Description: An authentication bypass issue exists, which may allow an attacker with access to a device where the application is installed to bypass the lock screen and obtain sensitive information. This issue affects the RoboForm Password Manager App for Android. Recommendations: For versions prior to 9.7.4, update to version 9.7.4 or later to resolve the issue. As a temporary workaround, consider disabling the lock screen feature in the RoboForm Password Manager App until a patch is applied. Restrict access to sensitive information stored in the app to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Brother iPrint&Scan versions 6.11.2 and earlier **Description** The issue is related to improper access control, which can be exploited by other apps installed on the victim's Android device. This exploitation may result in the display of settings and/or log information of the affected app as a print preview. **Recommendations** For Brother iPrint&Scan versions 6.11.2 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.