Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
intelIntel Security CenterINTEL:INTEL-SA-00596
HistoryAug 09, 2022 - 12:00 a.m.

Intel® Connect M Android App Advisory

2022-08-0900:00:00
Intel Security Center
www.intel.com
14
JSON

Summary:

A potential security vulnerability in the Intel® Connect Mobile (Connect M) Android application may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability.

Vulnerability Details:

CVEID: CVE-2021-44470

Description: Incorrect default permissions for the Intel® Connect M Android application before version 1.7.4 may allow an authenticated user to potentially enable information disclosure via local access.

CVSS Base Score: 4.4 Medium

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N****

Affected Products:

Intel® Connect M Android application before version 1.7.4.

Recommendations:

Intel recommends updating Intel® Connect M Android application to version 1.7.4 or later.

Updates are available for download at this location: <https://play.google.com/store/apps/details?id=com.intel.connect&gt;

Acknowledgements:

Intel would like to thank Sheikh Rishad for reporting this issue.

Intel, and nearly the entire technology industry, follows a disclosure practice called Coordinated Disclosure, under which a cybersecurity vulnerability is generally publicly disclosed only after mitigations are available.

Related

cve 1
prion 1
cve
cve
CVE-2021-44470
2022-08-18 20:15:00
prion
prion
Information disclosure
2022-08-18 20:15:00
JSON
Related for INTEL:INTEL-SA-00596
cve1prion1