CVE-2024-48546 - CERT CVE
ID CVE-2024-48546
Sažetak Incorrect access control in the firmware update and download processes of Wear Sync v1.2.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.
Reference
CVSS
Base: 8.4
Impact: 5.9
Exploitability:2.5
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje 25-10-2024 - 12:56
Objavljeno 24-10-2024 - 17:15