ID |
CVE-2024-53683
|
Sažetak |
A valid set of credentials in a .js file and a static token for
communication were obtained from the decompiled IPA. An attacker could
use the information to disrupt normal use of the application by changing
the translation files and thus weaken the integrity of normal use. |
Reference |
|
CVSS |
Base: | 4.4 |
Impact: | 3.6 |
Exploitability: | 0.8 |
|
Pristup |
Vektor | Složenost | Autentikacija |
LOCAL |
LOW |
HIGH |
|
Impact |
Povjerljivost | Cjelovitost | Dostupnost |
NONE |
HIGH |
NONE |
|
CVSS vektor |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N |
Zadnje važnije ažuriranje |
17-01-2025 - 17:15 |
Objavljeno |
17-01-2025 - 17:15 |