exploitDog

GHSA-h3v6-xh42-jhr6

Опубликовано: 09 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Nokelock Smart padlock O1 Version 5.3.0 is vulnerable to Insecure Permissions. By sending a request, you can add any device and set the device password in the Nokelock app.

Nokelock Smart padlock O1 Version 5.3.0 is vulnerable to Insecure Permissions. By sending a request, you can add any device and set the device password in the Nokelock app.

Ссылки

EPSS

Процентиль: 21%

0.00065

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2022-36228

CVSS3: 6.5

nvd

больше 2 лет назад

Nokelock Smart padlock O1 Version 5.3.0 is vulnerable to Insecure Permissions. By sending a request, you can add any device and set the device password in the Nokelock app.

EPSS

Процентиль: 21%

0.00065

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-862