CVE-2019-15068

Summary

A broken access control vulnerability in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 allows an attacker to get/reset administrator’s password without any authentication.

Affected Software

VendorProductVersion RangeStatus
GigastoneSmart Battery A4Firmware <= r1.7.9unknown

Weaknesses

  • CWE-284: CWE-284 Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References