Sensitive Information Leak in vivo Alarm Clock Module
CVE-2021-26281

5.5MEDIUM

Key Information:

Vendor

Vivo

Vendor
CVE Published:
17 December 2024

What is CVE-2021-26281?

The vulnerability CVE-2021-26281 affects the vivo Alarm Clock module, where improper storage of certain parameters can lead to the unintentional leakage of sensitive information. This security flaw poses a risk to users as it may expose personal and confidential data, potentially leading to privacy breaches. It is crucial for users to be informed about this issue and the need for updates to mitigate any risks associated with this vulnerability.

Affected Version(s)

Alarm clock Versions earlier than 6.0.1.2

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.