exploitDog

CVE-2022-48305

Опубликовано: 27 фев. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

There is an identity authentication bypass vulnerability in Huawei Children Smart Watch (Simba-AL00) 1.1.1.274. Successful exploitation of this vulnerability may cause the access control function of specific applications to fail.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/2023/huawei-sa-iabvithcswsa-c385b2dc-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/2023/huawei-sa-iabvithcswsa-c385b2dc-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:simba-al00_firmware:1.1.1.274:*:*:*:*:*:*:*

cpe:2.3:h:huawei:simba-al00:-:*:*:*:*:*:*:*

EPSS

Процентиль: 1%

0.00008

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-Other

CWE-287

Связанные уязвимости

GHSA-p3rj-h8c5-jhpv

CVSS3: 5.5

github

почти 3 года назад

There is an identity authentication bypass vulnerability in Huawei Children Smart Watch (Simba-AL00) 1.1.1.274. Successful exploitation of this vulnerability may cause the access control function of specific applications to fail.

EPSS

Процентиль: 1%

0.00008

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-Other

CWE-287