CVE-2021-24046

A logic flaw in Ray-Ban® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4003_65582v_48-23_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4003_65582v_48-23:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4002_601\/71_50-22_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4002_601\/71_50-22:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4005_656013_51-20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4005_656013_51-20:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4005_6563m3_51-20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4005_6563m3_51-20:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:52

Type Values Removed Values Added
References () https://www.facebook.com/security/advisories/cve-2021-24046 - Vendor Advisory () https://www.facebook.com/security/advisories/cve-2021-24046 - Vendor Advisory

Information

Published : 2022-01-14 18:15

Updated : 2024-11-21 05:52


NVD link : CVE-2021-24046

Mitre link : CVE-2021-24046

CVE.ORG link : CVE-2021-24046


JSON object : View

Products Affected

ray-ban

  • stories_rw4003_65582v_48-23
  • stories_rw4005_656013_51-20_firmware
  • stories_rw4003_65582v_48-23_firmware
  • stories_rw4002_601\/71_50-22_firmware
  • stories_rw4005_6563m3_51-20
  • stories_rw4002_601\/71_50-22
  • stories_rw4005_656013_51-20
  • stories_rw4005_6563m3_51-20_firmware
CWE
CWE-471

Modification of Assumed-Immutable Data (MAID)

CWE-425

Direct Request ('Forced Browsing')