1 results (0.001 seconds)
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-36483 – MAS (a Carrier brand) MASmobile Classic Authorization Bypass
https://notcve.org/view.php?id=CVE-2023-36483
16 Mar 2024 — Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history. Se descubrió una omisión de autorización en la aplicación Carrier MASmobile Classic hasta la versión 1.16.18 para Android, la aplicación MASmobile Classic hasta la 1.7.24 para iOS y los servicios MAS ASP.Net hasta l... • https://www.corporate.carrier.com/product-security/advisories-resources • CWE-639: Authorization Bypass Through User-Controlled Key •