Incorrect access control in the firmware update and download processes of Wear Sync v1.2.0 allows attackers to access sensitive information by analyzing the code and data within the APK file.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Thu, 24 Oct 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Shenzhen Yingsheng Technology Co
Shenzhen Yingsheng Technology Co wear Sync Firmware |
|
Weaknesses | CWE-863 | |
CPEs | cpe:2.3:o:shenzhen_yingsheng_technology_co:wear_sync_firmware:1.2.0:*:*:*:*:*:*:* | |
Vendors & Products |
Shenzhen Yingsheng Technology Co
Shenzhen Yingsheng Technology Co wear Sync Firmware |
|
Metrics |
cvssV3_1
|
Thu, 24 Oct 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Incorrect access control in the firmware update and download processes of Wear Sync v1.2.0 allows attackers to access sensitive information by analyzing the code and data within the APK file. | |
References |
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-10-24T18:23:36.931Z
Reserved: 2024-10-08T00:00:00
Link: CVE-2024-48546

Updated: 2024-10-24T18:23:22.524Z

Status : Awaiting Analysis
Published: 2024-10-24T17:15:17.447
Modified: 2024-10-25T12:56:07.750
Link: CVE-2024-48546

No data.

No data.