Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CWE-302 Authentication Bypass by Assumed-Immutable Data in AliveCor Kardia App version 5.17.1-754993421 and prior on Android allows an unauthenticated attacker with physical access to the Android device containing the app to bypass application authentication and alter information in the app.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Vulnerability Type
使用假设不可变数据进行的认证绕过
Vulnerability Title
AliveCor KardiaMobile 授权问题漏洞
Vulnerability Description
AliveCor KardiaMobile是美国AliveCor公司的一个个人心电图仪。 AliveCor KardiaMobile存在安全漏洞,该漏洞源于容易受意图操纵漏洞的攻击,允许攻击者绕过应用程序身份验证并查看或更改应用程序中的信息。
CVSS Information
N/A
Vulnerability Type
N/A