All 8 CVE vulnerabilities found in App, with AI-generated Chinese analysis, references, and POCs.
Vendor: Klapp
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3465 | Tuya App/SDK JSON Data Point denial of service CWE-404 | 3.1 | Low | 2026-03-03 |
| CVE-2025-52477 | Octo-STS Vulnerable to Unauthenticated SSRF with HTTP Response Reflection in OIDC Flow CWE-918 | 8.6 | High | 2025-06-26 |
| CVE-2025-5715 | Signal App Biometric Authentication missing critical step in authentication CWE-304 | 3.8 | Low | 2025-06-06 |
| CVE-2025-2356 | BlackVue App API deviceDelete get request method with sensitive query strings CWE-598 | 3.7 | Low | 2025-03-17 |
| CVE-2025-2355 | BlackVue App API Endpoint credentials storage CWE-256 | 3.3 | Low | 2025-03-17 |
| CVE-2024-34079 | octo-sts allows unauthenticated attackers to cause unbounded CPU and memory usage CWE-400 | 3.7 | Low | 2024-05-10 |
| CVE-2020-36533 | Klapp App JSON Web Token improper authentication CWE-287 | 3.7 | Low | 2022-06-03 |
| CVE-2020-36532 | Klapp App Authorization Credentials information disclosure CWE-200 | 4.3 | Medium | 2022-06-03 |
All 8 known CVE vulnerabilities affecting App with full Chinese analysis, references, and POCs where available.