CVE-2024-41999

Name of the Vulnerable Software and Affected Versions Smart-tab Android app versions prior to May 2023

Description The issue concerns an active debug code vulnerability in the Smart-tab Android app. If exploited, an attacker with physical access to the device may use the debug function to access OS functions, escalate privileges, change device settings, or spoof devices in other rooms.

Recommendations For versions prior to May 2023, as a temporary workaround, consider disabling the debug function until a patch is available. Restrict physical access to devices to minimize the risk of exploitation. Update the Smart-tab Android app to a version released after April 2023 to resolve the issue.