CVE-2020-5532

Опубликовано: 14 фев. 2020

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

ilbo App (ilbo App for Android prior to version 1.1.8 and ilbo App for iOS prior to version 1.2.01) allows an attacker on the same network segment to bypass authentication and to view the images which were recorded by the other ilbo user's device via unspecified vectors.

Ссылки

http://jvn.jp/en/jp/JVN35496038/index.html
Third Party Advisory
https://apps.apple.com/us/app/ilbo/id1116864683
Product
Release Notes
https://play.google.com/store/apps/details?id=jp.extrun.ilbo&hl=en
Product
http://jvn.jp/en/jp/JVN35496038/index.html
Third Party Advisory
https://apps.apple.com/us/app/ilbo/id1116864683
Product
Release Notes
https://play.google.com/store/apps/details?id=jp.extrun.ilbo&hl=en
Product

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:extrun:ilbo:*:*:*:*:*:android:*:*

Версия до 1.1.8 (исключая)

cpe:2.3:a:extrun:ilbo:*:*:*:*:*:iphone_os:*:*

Версия до 1.2.0 (исключая)

EPSS

Процентиль: 55%

0.00324

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-2jvm-wg52-7h4f

github

больше 3 лет назад