CVE-2024-41999

MEDIUM Year: 2024
CVSS v3 Score
6.8
Medium
Weakness Type
CWE-489
View all →

Vulnerability Description

Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability. If this vulnerability is exploited, an attacker with physical access to the device may exploit the debug function to gain access to the OS functions, escalate the privilege, change the device's settings, or spoof devices in other rooms.

Related Vulnerabilities

CVE-2020-8320

MEDIUM
CVSS:6.8(Medium)

An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege.

CWE-4892020

CVE-2021-1398

MEDIUM
CVSS:6.8(Medium)

A vulnerability in the boot logic of Cisco IOS XE Software could allow an authenticated, local attacker with level 15 privileges or an unauthenticated attacker with physical access to execute arbitrar...

CWE-4892021

CVE-2024-30219

MEDIUM
CVSS:6.8(Medium)

Active debug code vulnerability exists in PLANEX COMMUNICATIONS wireless LAN routers. If a logged-in user who knows how to use the debug function accesses the device's management page, an unintended o...

CWE-4892024

CVE-2024-53648

HIGH
CVSS:6.8(Medium)

A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.90), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions < V9.90), SIPROTEC 5 6MD86 (CP20...

CWE-4892024

CVE-2024-7756

MEDIUM
CVSS:6.8(Medium)

A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell.

CWE-4892024

CVE-2025-2919

HIGH
CVSS:6.8(Medium)

A vulnerability was found in Netis WF-2404 1.1.124EN. It has been declared as critical. This vulnerability affects unknown code of the component UART. The manipulation leads to hardware allows activat...

CWE-4892025