CVE-2024-3701

2024-04-1508:15:18

907edf6c-bf03-423e-ab1a-8da27e1aa1ea

web.nvd.nist.gov

cve-2024-3701

authentication bypass

system application

malicious exploitation

system services

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "HiOS"
    ],
    "product": "com.transsion.kolun.aiservice",
    "vendor": "TECNO",
    "versions": [
      {
        "status": "affected",
        "version": "13.0.0"
      }
    ]
  }
]