exploitDog

GHSA-cxq4-8ff4-35jm

Опубликовано: 30 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.7

Описание

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.

Ссылки

EPSS

Процентиль: 2%

0.00012

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-269

CWE-305

Связанные уязвимости

CVE-2023-6998

CVSS3: 7.7

nvd

около 2 лет назад

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.

EPSS

Процентиль: 2%

0.00012

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-269

CWE-305