CVE-2024-3124

A vulnerability classified as problematic has been found in fridgecow smartalarm 1.8.1 on Android. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-258867.
Configurations

No configuration.

History

21 Nov 2024, 09:28

Type Values Removed Values Added
References () https://github.com/ctflearner/Android_Findings/blob/main/Smartalarm/Backup.md - () https://github.com/ctflearner/Android_Findings/blob/main/Smartalarm/Backup.md -
References () https://vuldb.com/?ctiid.258867 - () https://vuldb.com/?ctiid.258867 -
References () https://vuldb.com/?id.258867 - () https://vuldb.com/?id.258867 -
References () https://vuldb.com/?submit.307752 - () https://vuldb.com/?submit.307752 -

11 Apr 2024, 01:25

Type Values Removed Values Added
Summary
  • (es) Se ha encontrado una vulnerabilidad en frigoríficocow smartalarm 1.8.1 y se ha clasificado como problemática. Una parte desconocida del archivo androidmanifest.xml del componente Backup File Handler es afectada por una función desconocida. La manipulación conduce a la exposición del archivo de copia de seguridad a una esfera de control no autorizada. Es posible lanzar el ataque al dispositivo físico. El exploit ha sido divulgado al público y puede utilizarse. El identificador asociado de esta vulnerabilidad es VDB-258867.

01 Apr 2024, 13:17

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-01 13:17

Updated : 2024-11-21 09:28


NVD link : CVE-2024-3124

Mitre link : CVE-2024-3124

CVE.ORG link : CVE-2024-3124


JSON object : View

Products Affected

No product.

CWE
CWE-530

Exposure of Backup File to an Unauthorized Control Sphere