Lucene search

K
cve[email protected]CVE-2023-2863
HistoryMay 24, 2023 - 10:15 a.m.

CVE-2023-2863

2023-05-2410:15:09
CWE-312
CWE-313
web.nvd.nist.gov
26
cve-2023-2863
vulnerability
simple design daily journal
android
sqlite database
cleartext storage
local host attack

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.4 Medium

AI Score

Confidence

High

1.4 Low

CVSS2

Access Vector

Access Complexity

Authentication

MULTIPLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:M/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

15.5%

A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SQLite Database. The manipulation leads to cleartext storage in a file or on disk. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-229819.

Affected configurations

NVD
Node
simpledesigndiary_with_lock\Match_daily_journal1.012.gp.bandroid

CNA Affected

[
  {
    "vendor": "Simple Design",
    "product": "Daily Journal",
    "versions": [
      {
        "version": "1.012.GP.B",
        "status": "affected"
      }
    ],
    "modules": [
      "SQLite Database"
    ]
  }
]

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.4 Medium

AI Score

Confidence

High

1.4 Low

CVSS2

Access Vector

Access Complexity

Authentication

MULTIPLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:M/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

15.5%

Related for CVE-2023-2863