PT-2023-22844 · Mobatime · Mobatime

Testeurdestylos

Publicado

2023-06-05

Atualizado

2023-06-14

CVE-2023-3065

CVSS v3.1

9.1

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Mobatime mobile application AMXGT100 versions 1.3.20 and earlier

Description The issue is related to an Improper Authentication vulnerability that allows Authentication Bypass in the Mobatime mobile application.

Recommendations For Mobatime mobile application AMXGT100 versions 1.3.20 and earlier, update to a version that fixes the Improper Authentication vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

CVE-2023-3065

Produtos afetados

Mobatime

PT-2023-22844 · Mobatime · Mobatime

CVE-2023-3065

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4