CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-1298
https://notcve.org/view.php?id=CVE-2025-1298
14 Feb 2025 — Logic vulnerability in the mobile application (com.transsion.carlcare) may lead to the risk of account takeover. • https://security.tecno.com/SRC/blogdetail/383?lang=en_US • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0590
https://notcve.org/view.php?id=CVE-2025-0590
20 Jan 2025 — Improper permission settings for mobile applications (com.transsion.carlcare) may lead to information leakage risk. • https://security.tecno.com/SRC/blogdetail/381?lang=en_US • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7697 – Logical vulnerability in com.transsion.carlcare
https://notcve.org/view.php?id=CVE-2024-7697
12 Aug 2024 — Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user information leakage risks. • https://security.tecno.com/SRC/blogdetail/294?lang=en_US • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-863: Incorrect Authorization •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-5163 – Improper permission settings in com.transsion.carlcare
https://notcve.org/view.php?id=CVE-2024-5163
17 Jun 2024 — Improper permission settings for mobile applications (com.transsion.carlcare) may lead to user password and account security risks. La configuración incorrecta de permisos para aplicaciones móviles (com.transsion.carlcare) puede provocar riesgos de seguridad de la cuenta y la contraseña del usuario. • https://security.tecno.com/SRC/blogdetail/267?lang=en_US • CWE-280: Improper Handling of Insufficient Permissions or Privileges CWE-732: Incorrect Permission Assignment for Critical Resource •