CVE-2023-6998 - OpenCVE

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Coolkit	Ewelink

Configuration 1 [-]

OR	cpe:2.3:a:coolkit:ewelink::::::android::*
	cpe:2.3:a:coolkit:ewelink::::::iphone_os::*

No data.

References

Link	Providers
https://cert.pl/en/posts/2023/12/CVE-2023-6998/
https://cert.pl/posts/2023/12/CVE-2023-6998/
https://ewelink.cc/app/

History

No history.

MITRE

Status: PUBLISHED

Assigner: CERT-PL

Published: 2023-12-30T18:32:07.452Z

Updated: 2024-08-02T08:50:07.670Z

Reserved: 2023-12-20T14:04:20.543Z

Link: CVE-2023-6998

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-12-30T19:15:08.303

Modified: 2024-01-11T20:25:14.163

Link: CVE-2023-6998

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-6998", "assignerOrgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "state": "PUBLISHED", "assignerShortName": "CERT-PL", "dateReserved": "2023-12-20T14:04:20.543Z", "datePublished": "2023-12-30T18:32:07.452Z", "dateUpdated": "2024-08-02T08:50:07.670Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://play.google.com/store/apps/details?id=com.coolkit", "defaultStatus": "unaffected", "platforms": ["Android"], "product": "eWeLink - Smart Home", "vendor": "CoolKit Technology", "versions": [{"lessThan": "5.2.0 ", "status": "affected", "version": "0", "versionType": "custom"}]}, {"collectionURL": "https://apps.apple.com/us/app/ewelink-smart-home/id1035163158", "defaultStatus": "unaffected", "platforms": ["iOS"], "product": "eWeLink-Smart Home", "vendor": "CoolKit Technology", "versions": [{"lessThan": "5.2.0", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Jan Adamski (NASK)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.<p>This issue affects eWeLink before 5.2.0.</p>"}], "value": "Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.\n\n"}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "shortName": "CERT-PL", "dateUpdated": "2023-12-30T18:34:47.199Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"tags": ["third-party-advisory"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"tags": ["product"], "url": "https://ewelink.cc/app/"}], "source": {"discovery": "UNKNOWN"}, "title": "Lockscreen bypass in eWeLink App", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:50:07.670Z"}, "title": "CVE Program Container", "references": [{"tags": ["third-party-advisory", "x_transferred"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"tags": ["product", "x_transferred"], "url": "https://ewelink.cc/app/"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:coolkit:ewelink:*:*:*:*:*:android:*:*", "matchCriteriaId": "EC7555B6-75B2-4D23-99EC-FED1D5097018", "versionEndExcluding": "5.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:coolkit:ewelink:*:*:*:*:*:iphone_os:*:*", "matchCriteriaId": "4BD37BFB-D978-4C15-895A-5D86D064743F", "versionEndExcluding": "5.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.\n\n"}, {"lang": "es", "value": "Vulnerabilidad de administraci\u00f3n de privilegios inadecuada en CoolKit Technology eWeLink en Android e iOS permite omitir la pantalla de bloqueo de la aplicaci\u00f3n. Este problema afecta a eWeLink antes de 5.2.0."}], "id": "CVE-2023-6998", "lastModified": "2024-01-11T20:25:14.163", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.2, "source": "cvd@cert.pl", "type": "Secondary"}]}, "published": "2023-12-30T19:15:08.303", "references": [{"source": "cvd@cert.pl", "tags": ["Third Party Advisory"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"source": "cvd@cert.pl", "tags": ["Third Party Advisory"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"source": "cvd@cert.pl", "tags": ["Product"], "url": "https://ewelink.cc/app/"}], "sourceIdentifier": "cvd@cert.pl", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-269"}], "source": "cvd@cert.pl", "type": "Secondary"}]}