Описание
The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:transsion:hios:14.0.0:*:*:*:*:*:*:*
cpe:2.3:h:transsion:tecno_pova6_pro_5g:-:*:*:*:*:*:*:*
EPSS
Процентиль: 10%
0.00035
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 6.5
github
около 2 месяцев назад
The component com.transsion.tranfacmode.entrance.main.MainActivity in com.transsion.tranfacmode has no permission control and can be accessed by third-party apps which can construct intents to directly open adb debugging functionality without user interaction.
EPSS
Процентиль: 10%
0.00035
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-862