exploitDog

GHSA-pgwp-hxrw-pr48

Опубликовано: 06 июл. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data.

Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data.

Ссылки

EPSS

Процентиль: 25%

0.00085

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2023-30641

CVSS3: 4.3

nvd

больше 2 лет назад

Improper access control vulnerability in Settings prior to SMR Jul-2023 Release 1 allows physical attacker to use restricted user profile to access device owner's google account data.

EPSS

Процентиль: 25%

0.00085

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-284