CVE-2024-42496

Summary

Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may retrieve the credential information and spoof the device to access the related external service.

Affected Software

VendorProductVersion RangeStatus
TECHNO SUPPORT COMPANYSmart-tab Android appinstalled April 2023 or earlieraffected

Weaknesses

  • CWE-256: Plaintext storage of a password

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References