PT-2024-18738 · Applock · Applock
Balance
·
Published
2024-03-04
·
Updated
2025-02-10
·
CVE-2024-20830
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
AppLock versions prior to SMR Mar-2024 Release 1
Description
The issue is related to an incorrect default permission in AppLock, allowing local attackers to configure AppLock settings. This could potentially lead to unauthorized access or changes to the settings.
Recommendations
For versions prior to SMR Mar-2024 Release 1, update to SMR Mar-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to AppLock settings to minimize the risk of exploitation.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Applock