CVE-2024-48545 - CERT CVE
ID CVE-2024-48545
Sažetak Incorrect access control in the firmware update and download processes of IVY Smart v4.5.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.
Reference
CVSS
Base: 8.4
Impact: 5.9
Exploitability:2.5
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje 25-10-2024 - 12:56
Objavljeno 24-10-2024 - 17:15