exploitDog

GHSA-pmp7-4p22-ggcc

Опубликовано: 24 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.4

Описание

Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.

Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.

Ссылки

EPSS

Процентиль: 13%

0.00042

Низкий

8.4 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2024-48547

CVSS3: 8.4

nvd

больше 1 года назад

Incorrect access control in the firmware update and download processes of DreamCatcher Life v1.8.7 allows attackers to access sensitive information by analyzing the code and data within the APK file.

EPSS

Процентиль: 13%

0.00042

Низкий

8.4 High

CVSS3

CVE ID

Дефекты

CWE-863