CVE-2024-3130 | CoolKIt eWeLink App prior 5.4.x on Android/iOS hard-coded credentials

Inserito da Angelo Barbosa | Apr 1, 2024 | CVE

A vulnerability classified as problematic has been found in CoolKIt eWeLink App on Android/iOS. Affected is an unknown function. The manipulation leads to hard-coded credentials.

This vulnerability is traded as CVE-2024-3130. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-3130 | CoolKIt eWeLink App prior 5.4.x on Android/iOS hard-coded credentials

Post correlati

CVE-2024-42676 | Huizhi Enterprise Resource Management System up to 1.0 DNPageAjaxPostBack /nssys/common/Upload unrestricted upload

CVE-2024-25635 | alf.io prior 2.0-M4-2402 API Endpoint /admin/api/users/ unknown vulnerability (GHSA-ffr5-g3qg-gp4f)

CVE-2023-45221 | Intel Media SDK memory corruption (intel-sa-00935)

CVE-2024-41124 | ARPSyndicate puncia up to 0.20 cleartext transmission