CVE-2021-24046

A logic flaw in Ray-BanĀ® Stories device software allowed some parameters like video capture duration limit to be modified through the Facebook View application. This issue affected versions of device software before 2107460.6810.0.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4003_65582v_48-23_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4003_65582v_48-23:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4002_601\/71_50-22_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4002_601\/71_50-22:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4005_656013_51-20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4005_656013_51-20:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:ray-ban:stories_rw4005_6563m3_51-20_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:ray-ban:stories_rw4005_6563m3_51-20:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-01-14 18:15

Updated : 2024-02-28 18:48


NVD link : CVE-2021-24046

Mitre link : CVE-2021-24046

CVE.ORG link : CVE-2021-24046


JSON object : View

Products Affected

ray-ban

  • stories_rw4005_6563m3_51-20_firmware
  • stories_rw4005_6563m3_51-20
  • stories_rw4003_65582v_48-23_firmware
  • stories_rw4002_601\/71_50-22
  • stories_rw4005_656013_51-20_firmware
  • stories_rw4005_656013_51-20
  • stories_rw4003_65582v_48-23
  • stories_rw4002_601\/71_50-22_firmware
CWE
CWE-425

Direct Request ('Forced Browsing')

CWE-471

Modification of Assumed-Immutable Data (MAID)