Android Smart-tab Vulnerability: Plaintext Password Storage Risk
CVE-2024-42496

2.4LOW

Key Information:

Vendor: Techno Support Company
Status: Smart-tab Android App
Vendor: CVE Published:; 30 September 2024

What is CVE-2024-42496?

Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may retrieve the credential information and spoof the device to access the related external service.

Affected Version(s)

Smart-tab Android app installed April 2023 or earlier

References

https://tsc-soft.co.jp/smart-tab/

https://jvn.jp/en/jp/JVN42445661/

CVSS V3.1

Score:

2.4

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 30, 2024
Vulnerability Reserved
Sep 18, 2024

Techno Support Company

What is CVE-2024-42496?

Affected Version(s)

References

CVSS V3.1

Timeline