CVE-2022-37193

CVSS 7.4 HIGHEPSS 0.5%CWE-522

Chipolo ONE Bluetooth tracker (2020) Chipolo iOS app version 4.13.0 is vulnerable to Incorrect Access Control. Chipolo devices suffer from access revocation evasion attacks once the malicious sharee obtains the access credentials.

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Productos afectados

n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://chipolo.net/en-us/products/chipolo-one-4-pack https://github.com/zhouxinan/CCS22MaaGIoT/blob/main/ChipoloONE.md