CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
26.1%
An issue was discovered in Luna Simo PPR1.180610.011/202001031830. It sends the following Personally Identifiable Information (PII) in plaintext using HTTP to servers located in China: user’s list of installed apps and device International Mobile Equipment Identity (IMEI). This PII is transmitted to log.skyroam.com.cn using HTTP, independent of whether the user uses the Simo software.
Vendor | Product | Version | CPE |
---|---|---|---|
bluproducts | g90_firmware | - | cpe:2.3:o:bluproducts:g90_firmware:-:*:*:*:*:*:*:* |
bluproducts | g90 | - | cpe:2.3:h:bluproducts:g90:-:*:*:*:*:*:*:* |
bluproducts | g9_firmware | - | cpe:2.3:o:bluproducts:g9_firmware:-:*:*:*:*:*:*:* |
bluproducts | g9 | - | cpe:2.3:h:bluproducts:g9:-:*:*:*:*:*:*:* |
wikomobile | tommy_3_firmware | - | cpe:2.3:o:wikomobile:tommy_3_firmware:-:*:*:*:*:*:*:* |
wikomobile | tommy_3 | - | cpe:2.3:h:wikomobile:tommy_3:-:*:*:*:*:*:*:* |
wikomobile | tommy_3_plus_firmware | - | cpe:2.3:o:wikomobile:tommy_3_plus_firmware:-:*:*:*:*:*:*:* |
wikomobile | tommy_3_plus | - | cpe:2.3:h:wikomobile:tommy_3_plus:-:*:*:*:*:*:*:* |
luna | simo_firmware | - | cpe:2.3:o:luna:simo_firmware:-:*:*:*:*:*:*:* |
luna | simo | - | cpe:2.3:h:luna:simo:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
26.1%