CVE-2025-50862 - CERT CVE
ID CVE-2025-50862
Sažetak The Lotus Cars Android app (com.lotus.carsdomestic.intl) 1.2.8 has allowBackup=true set in its manifest, allowing data exfiltration via ADB backup on rooted or debug-enabled devices. This presents a risk of user data exposure.
Reference
CVSS
Base: 5.9
Impact: 3.4
Exploitability:2.5
Pristup
VektorSloženostAutentikacija
LOCAL LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW LOW
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Zadnje važnije ažuriranje 05-07-2026 - 16:19
Objavljeno 14-08-2025 - 20:15