CVE-2024-41999

Published at:
2024-09-30T08:15:03.210
Source: [email protected]

Global infos:

Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability. If this vulnerability is exploited, an attacker with physical access to the device may exploit the debug function to gain access to the OS functions, escalate the privilege, change the device's settings, or spoof devices in other rooms.

CVE Status: Awaiting Analysis

References:

  • [email protected]
  • [email protected]
    •

    Metrics:

    AttributeValue
    Attack ComplexityLOW
    Attack VectorPHYSICAL
    Availability ImpactHIGH
    Base Score6.8
    Base SeverityMEDIUM
    Confidentiality ImpactHIGH
    Integrity ImpactHIGH
    Privileges RequiredNONE
    ScopeUNCHANGED
    User InteractionNONE
    Vector StringCVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    Exploitability Score0.9
    Impact Score5.9
    Source134c704f-9b21-4f2e-91b3-4a467353bcc0
    TypeSecondary

    Links:

    Exploit-db
    Github

    Most recherched CVEs
    Popular Keywords