Active Debug Code in Smart-tab - CVE-2024-41999

 

Active Debug Code in Smart-tab - CVE-2024-41999

Published: September 30, 2024


Vulnerability identifier: #VU97761
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2024-41999
CWE-ID: CWE-489
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: Techno Support Company
Affected software:
Smart-tab

Detailed vulnerability description

The vulnerability allows a local attacker to compromise the target system.

The vulnerability exists due to the active debug code issue. An attacker with physical access can exploit the debug function to gain access to the OS functions and escalate the privilege.


How to mitigate CVE-2024-41999

Install updates from vendor's website.

Sources