Incorrect access control in the firmware update and download processes of IVY Smart v4.5.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Thu, 24 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ivyiot
Ivyiot ivy Smart Firmware |
|
Weaknesses | CWE-863 | |
CPEs | cpe:2.3:o:ivyiot:ivy_smart_firmware:4.5.0:*:*:*:*:*:*:* | |
Vendors & Products |
Ivyiot
Ivyiot ivy Smart Firmware |
|
Metrics |
cvssV3_1
|
Thu, 24 Oct 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Incorrect access control in the firmware update and download processes of IVY Smart v4.5.0 allows attackers to access sensitive information by analyzing the code and data within the APK file. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-10-24T18:25:52.517Z
Reserved: 2024-10-08T00:00:00
Link: CVE-2024-48545

Updated: 2024-10-24T18:25:45.982Z

Status : Awaiting Analysis
Published: 2024-10-24T17:15:17.353
Modified: 2024-10-25T12:56:07.750
Link: CVE-2024-48545

No data.

No data.