Incorrect access control in the firmware update and download processes of Wear Sync v1.2.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.
Metrics
Affected Vendors & Products
References
History
Thu, 24 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Shenzhen Yingsheng Technology Co
Shenzhen Yingsheng Technology Co wear Sync Firmware |
|
Weaknesses | CWE-863 | |
CPEs | cpe:2.3:o:shenzhen_yingsheng_technology_co:wear_sync_firmware:1.2.0:*:*:*:*:*:*:* | |
Vendors & Products |
Shenzhen Yingsheng Technology Co
Shenzhen Yingsheng Technology Co wear Sync Firmware |
|
Metrics |
cvssV3_1
|
Thu, 24 Oct 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Incorrect access control in the firmware update and download processes of Wear Sync v1.2.0 allows attackers to access sensitive information by analyzing the code and data within the APK file. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-10-24T00:00:00
Updated: 2024-10-24T18:23:36.931Z
Reserved: 2024-10-08T00:00:00
Link: CVE-2024-48546
Vulnrichment
Updated: 2024-10-24T18:23:22.524Z
NVD
Status : Awaiting Analysis
Published: 2024-10-24T17:15:17.447
Modified: 2024-10-25T12:56:07.750
Link: CVE-2024-48546
Redhat
No data.