Описание
"Tasks" application version before 9.7.3 is affected by insecure permissions. The VoiceCommandActivity application component allows arbitrary applications on a device to add tasks with no restrictions.
Ссылки
- ExploitPatchThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitPatchThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 9.7.3 (исключая)
cpe:2.3:a:tasks:tasks:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00089
Низкий
6.8 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-276
Связанные уязвимости
github
больше 3 лет назад
"Tasks" application version before 9.7.3 is affected by insecure permissions. The VoiceCommandActivity application component allows arbitrary applications on a device to add tasks with no restrictions.
EPSS
Процентиль: 25%
0.00089
Низкий
6.8 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-276